[mythtv-users] the heartbleed openssl bug and mythtv

Ian Evans dheianevans at gmail.com
Wed Apr 9 19:33:55 UTC 2014


On Wed, Apr 9, 2014 at 3:12 PM, <yan at seiner.com> wrote:

> > Just a heads up that if you've made your mythbox accessible from the
> > outside via ssh or mythweb you may need to make sure your system isn't
> > affected by the recenlty discovered heartbleed security hole.
> >
> >
> http://serverfault.com/questions/587329/heartbleed-what-is-it-and-what-are-options-to-mitigate-it
> >
> > I'm currently running mythbuntu 12.04. Any tips to get patched? Should I
> > hope to 13.04 immediately?
>
> apt-get update && apt-get upgrade
>
> if you don't have automatic security updates enabled (which you should).
>
> Mine updated sometime between the 4th and today.
>
> If you want to dist-upgrade wait until 14.04 is out in a few more days.
>

I did that earlier today and it's still OpenSSL 1.0.1 14 Mar 2012

I do use TLS for some email alerts for the box.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.mythtv.org/pipermail/mythtv-users/attachments/20140409/176434fd/attachment.html>


More information about the mythtv-users mailing list