[FRsAG] Heartbleed

Erwan Ben Souiden erwan at aleikoum.net
Jeu 10 Avr 09:40:42 CEST 2014


Si vous l'avez loupé un petit script pratique:
https://github.com/musalbas/heartbleed-masstest

Description:

This repo contains a script to automatically test sites for vulnerability
to the Heartbleed Bug (CVE-2014-0160) <http://heartbleed.com/>.

This repo also contains test results for the Alexa top 10,000 sites as of
around April 8, 16:00 UTC. *Websites listed as vulnerable may no longer be
vulnerable. This list serves as a snapshot of vulnerable sites at the time
of the scan.*

*This is not a tracker which tracks which sites are vulnerable or not over
time, but shows which sites have been affected.*

To check if a site is still vulnerable, you may use the tool at
http://filippo.io/Heartbleed/.

Please note that subdomains aren't tested, so sites that don't have SSL on
their main domain will appear as "no SSL".



Mais bon j'espère que vous êtes déjà tous à jour :)

/Erwan

2014-04-10 9:36 GMT+02:00 Pierre `Sn4kY` DOLIDON <sn4ky at sn4ky.net>:

>
> Et sinon ?
>
> Personne sur une liste de sysadmin ne parle de heartbleed ?
>
> j'en suis presque choqué en fait !
>
> A vos updates !
> _______________________________________________
> Liste de diffusion du FRsAG
> http://www.frsag.org/
>
-------------- section suivante --------------
Une pièce jointe HTML a été nettoyée...
URL: <http://www.frsag.org/pipermail/frsag/attachments/20140410/54c49282/attachment.html>


Plus d'informations sur la liste de diffusion FRsAG