[rt-users] Heartbleed OpenSSL vulnerability

[Percynski, Fred]

I haven't seen anything on this mailing list, or on the Best Practical web site, that discusses the Heartbleed vulnerability.

Does RT use OpenSSL in any way?
My server had a vulnerable version of OpenSSL installed at the time RT was compiled.   I would like to know if RT needs to be recompiled/upgraded now that OpenSSL has been patched.


Thanks,
Fred



-
The information contained in this message is privileged and  confidential. It is intended only for the recipient or entity listed  above. If the reader of this message is not the intended recipient, you  are hereby notified that any dissemination, distribution, or copying of  this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by replying to the message and promptly deleting it from your computer.
   
NOTICE TO RECIPIENT(S) OF INFORMATION: 
Information disclosed to you pertaining to certain conditions, such as treatment for alcohol or drug abuse, HIV/AIDS and other sexually transmitted diseases, behavioral health, and genetic marker information is protected by various federal and state laws which prohibit any further disclosure of this information by you without the express written consent of the person to whom it pertains or as otherwise permitted by such laws. Any unauthorized further disclosure in violation of state or federal law may result in a fine or jail sentence or both. A general authorization for the release of medical or other information is NOT sufficient consent for release of these types of information. The federal rule at 42 CFR Part 2 restricts use of the information disclosed to criminally investigate or prosecute any alcohol or drug abuse patient.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20140418/987d1418/attachment.htm>