openssl vulnerability

Some of you may have seen the news regarding a serious vulnerability in openssl.

Please check your systems using http://filippo.io/Heartbleed/ .

If you are vulnerable (likely!) then you should ensure that you have updated your openssl package. you may also need to restart nginx.

This blog with Ubuntu instructions can help:

http://blog.matthewdfuller.com/2014/04/how-to-fix-openssl-heart-bleed-bug-on.html

There are other measures to consider for highly sensitive systems, but at least you should be doing the above.

Regards

Bob

Clarification: this message is for server administrators rather than all dhis2 users.

ยทยทยท

On 9 April 2014 12:23, Bob Jolliffe bobjolliffe@gmail.com wrote:

Some of you may have seen the news regarding a serious vulnerability in openssl.

Please check your systems using http://filippo.io/Heartbleed/ .

If you are vulnerable (likely!) then you should ensure that you have updated your openssl package. you may also need to restart nginx.

This blog with Ubuntu instructions can help:

http://blog.matthewdfuller.com/2014/04/how-to-fix-openssl-heart-bleed-bug-on.html

There are other measures to consider for highly sensitive systems, but at least you should be doing the above.

Regards

Bob