t; main contrib non-free ==
> >
> > Any ideas how I should proceed?
> >
>
> By checking the revision of the release, rather than just the
> internal version number.
>
> dom@ozzy:~$ dpkg-query -W openssl
> openssl
ty patches to the current version. Check your package version.
>
> dpkg -l openssl
>
> According to the changelog [1], wheezy openssl got the heartbleed
> patch on 1.0.1e-2+deb7u5 on April 7. The latest version as of this
> email is 1.0.1e-2+deb7u7.
>
> [1]
> http://metadata.
ng the revision of the release, rather than just the internal
version number.
dom@ozzy:~$ dpkg-query -W openssl
openssl 1.0.1e-2+deb7u6
The "deb7u6" is the important bit. The "heartbleed" bug only exists in
deb7u4 and earlier.
--
Dom
--
To UNSUBSCRIBE, email to debian-us
erver/stevebup#
Wheezy is the current stable so they aren't going to update an
important library to a new upstream version. Instead they backport
security patches to the current version. Check your package version.
dpkg -l openssl
According to the changelog [1], wheezy openssl got the hea
Hi all,
I installed Wheezy on my backup server, then did this:
apt-get update
apt-get upgrade
root@bupserv:/backupserver/stevebup# openssl version
OpenSSL 1.0.1e 11 Feb 2013
root@bupserv:/backupserver/stevebup#
Here's my /etc/apt/sources.list:
==
#
# deb
On Apr 19, 2014, at 11:56 AM, Roger Klorese wrote:
>
> No, just judginess.
And to head off the five hundred self-important follow-ups, sorry for imitating
most of the world and top-posting.
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of "unsubscribe". Tr
No, just judginess.
Sent from my iPhone
> On Apr 19, 2014, at 11:36 AM, Brad Rogers wrote:
>
> On Sat, 19 Apr 2014 09:25:17 -0700
> Roger Klorese wrote:
>
> Hello Roger,
>
>> It's not so easy to look like you consistently have three days' growth.
>
> Chris made his comments, I'm pretty sur
On Sun, 20 Apr 2014 04:20:50 +1200
Chris Bannister wrote:
Hello Chris,
>Unbelievable! You mean you can buy beard trimmers that make you look as
>though you forgot to shave? And people buy them!!! ???
Yes, and yes.
>Someone should tell them, it's easily done and you DON'T need a beard
>trimmer
On Sat, 19 Apr 2014 09:25:17 -0700
Roger Klorese wrote:
Hello Roger,
>It's not so easy to look like you consistently have three days' growth.
Chris made his comments, I'm pretty sure, heavily tinged with sarcasm.
--
Regards _
/ ) "The blindingly obvious is
/ _)ra
Lisi Reisz grabbed a keyboard and wrote:
> On Saturday 19 April 2014 17:24:20 David Guntner wrote:
>> This discussion would be best continued here:
>>
>> http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
>
> And these "suggestions" would too. Just kill the thread if it is
> an
On Saturday 19 April 2014 17:24:20 David Guntner wrote:
> This discussion would be best continued here:
>
> http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopi
>c
And these "suggestions" would too. Just kill the thread if it is
annoying you so much, or go to teh off-topic list.
It's not so easy to look like you consistently have three days' growth.
Sent from my iPhone
> On Apr 19, 2014, at 9:20 AM, Chris Bannister
> wrote:
>
>> On Fri, Apr 18, 2014 at 12:59:02PM +0100, Brad Rogers wrote:
>> On Fri, 18 Apr 2014 08:11:27 + (UTC)
>> Curt wrote:
>>
>> Hello Curt,
This discussion would be best continued here:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
Scott Ferguson grabbed a keyboard and wrote:
> On 19/04/14 19:04, Joe wrote:
>> On Sat, 19 Apr 2014 14:33:43 +1000
>> Scott Ferguson wrote:
>>
>>
>>>
>>> Perhaps the solution is not
This discussion is best continued here:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
Joe grabbed a keyboard and wrote:
> On Sat, 19 Apr 2014 14:33:43 +1000
> Scott Ferguson wrote:
>
>
>>
>> Perhaps the solution is not greater bureaucracy to safeguard data
>> ignorance,
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
Scott Ferguson grabbed a keyboard and wrote:
> On 19/04/14 16:51, Tom Furie wrote:> On Sat, Apr 19, 2014 at 02:33:43PM
> +1000, Scott Ferguson wrote:
>>> On 19/04/14 07:55, Joe wrote:
>>
As is the light originating inside pe
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
Tom Furie grabbed a keyboard and wrote:
> On Sat, Apr 19, 2014 at 02:33:43PM +1000, Scott Ferguson wrote:
>> On 19/04/14 07:55, Joe wrote:
>
>>> As is the light originating inside peoples' homes and passing out of
>>> their wind
On Fri, Apr 18, 2014 at 12:59:02PM +0100, Brad Rogers wrote:
> On Fri, 18 Apr 2014 08:11:27 + (UTC)
> Curt wrote:
>
> Hello Curt,
>
> >On 2014-04-18, Steve Litt wrote:
> >> * I can successfully shave myself to leave exactly four days growth.
> >I've always wondered how those Macintosh fan
On Sat, Apr 19, 2014 at 02:33:43PM +1000, Scott Ferguson wrote:
> On 19/04/14 07:55, Joe wrote:
> > As is the light originating inside peoples' homes and passing out of
> > their windows. In which case it is arguable that it is perfectly
> > acceptable to collect and record that light with a camera
On 19/04/14 19:04, Joe wrote:
> On Sat, 19 Apr 2014 14:33:43 +1000
> Scott Ferguson wrote:
>
>
>>
>> Perhaps the solution is not greater bureaucracy to safeguard data
>> ignorance,
>>
>
> I certainly wasn't suggesting bureaucracy,
Nor did I understand you to be - just commenting on the subject
On Sat, 19 Apr 2014 14:33:43 +1000
Scott Ferguson wrote:
>
> Perhaps the solution is not greater bureaucracy to safeguard data
> ignorance,
>
I certainly wasn't suggesting bureaucracy, my country has more than
enough already, and we all know that laws are framed to allow
governments to do exa
On 19/04/14 16:51, Tom Furie wrote:> On Sat, Apr 19, 2014 at 02:33:43PM
+1000, Scott Ferguson wrote:
>> On 19/04/14 07:55, Joe wrote:
>
>>> As is the light originating inside peoples' homes and passing out
>>> of their windows. In which case it is arguable that it is
>>> perfectly acceptable to co
On Sat, Apr 19, 2014 at 02:33:43PM +1000, Scott Ferguson wrote:
> On 19/04/14 07:55, Joe wrote:
> > As is the light originating inside peoples' homes and passing out of
> > their windows. In which case it is arguable that it is perfectly
> > acceptable to collect and record that light with a camer
On 19/04/2014 6:08 AM, Roger Klorese wrote:
> How much do you think distributors and resellers get when you buy packaged
> software in a store or online?!
Often times retailers get the raw end of the stick, it's the distys that
make the most per sale -- probably like artists with music too often.
On 19/04/14 07:55, Joe wrote:
> On Fri, 18 Apr 2014 07:48:13 -0500
> John Hasler wrote:
>
>> Karl E. Jorgensen writes:
>>> Obviously, they had no need to save the actual *traffic*, merely the
>>> access point MAC address, signal strength and streetview car
>>> location to do this.
>>
>> In any ca
Okay, the short version of the long post:
If you don't know what to do about things like the heartbeat/bleed bug, I'm
suggesting we all start contributing more to the projects we regularly use.
Learn to code if we haven't. Report bugs. Help with documentation and
localization.
That's how we redu
Joel Rees grabbed a keyboard and wrote:
> (Reader beware. Length breeds length.)
And this whole thread has gone on (and morphed) entirely too long.
Please take it to the Debian Offtopic list.
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
smime.p7s
Description: S/MIME Cr
ying to make money on frictionless market
exchanges had to write their own, maybe they'd find it a little easier to
face the reality about "frictionless".
Having said that, it seems to me that the following just reinforces the
argument that we all need to take more part in this stuff.
That's hardware, mainly. But margins on PC hardware are terrible too. Software
is typically 30% or so.
Sent from my iPhone
> On Apr 18, 2014, at 1:12 PM, Andrew McGlashan
> wrote:
>
>> On 19/04/2014 6:08 AM, Roger Klorese wrote:
>> How much do you think distributors and resellers get when yo
On Fri, 18 Apr 2014 07:48:13 -0500
John Hasler wrote:
> Karl E. Jorgensen writes:
> > Obviously, they had no need to save the actual *traffic*, merely the
> > access point MAC address, signal strength and streetview car
> > location to do this.
>
> In any case, the traffic was broadcast into pub
On 19/04/2014 6:08 AM, Roger Klorese wrote:
> How much do you think distributors and resellers get when you buy packaged
> software in a store or online?!
Not much, generally, especially Apple distributors -- again because
Apple themselves are too greedy and they are big competition to their
own
How much do you think distributors and resellers get when you buy packaged
software in a store or online?!
Sent from my iPhone
> On Apr 18, 2014, at 1:02 PM, Andrew McGlashan
> wrote:
>
>> On 19/04/2014 3:09 AM, Robert Holtzman wrote:
>> But, but, you would deprive Apple of that $5.99? Commie
On 19/04/2014 3:09 AM, Robert Holtzman wrote:
> But, but, you would deprive Apple of that $5.99? Commie!!!
I must be too, because I have trouble supporting the whole, 'apple
*always( gets a cut' deal together with 'apple users will pay more or
something, when others may not pay at all' ... Perso
On Fri, Apr 18, 2014 at 09:27:32AM -0400, Brad Alexander wrote:
> On Thu, Apr 17, 2014 at 12:15 PM, Robert Holtzman wrote:
>
> > > Or Apple, sacrifices your
> > > security by wordsmithing. According to them, they don't get malware,
> > their
> > > computers just have "unwanted programs."
> >
> >
I wrote:
> If you don't want messages you send to go through Gmail don't send
> them there.
Slavko writes:
> Are you participating on the Googles's profit?
No. So what?
BTW I am subscribed to the list. No need to cc me.
--
John Hasler
jhas...@newsguy.com
Elmwood, WI USA
--
To UNSUBSCRIBE,
On 2014-04-18, Martin Read wrote:
>>
>> I've always wondered how those Macintosh fanboys (and Hollywood
>> celebrities, two overlapping sets) accomplished this.
>
> I assume they use an electric beard trimmer or hair clippers with the
> guard removed.
>
The instructions say never to remove the gu
On Fri, 18 Apr 2014 13:38:31 +0100
Lisi Reisz wrote:
Hello Lisi,
>> All the male grooming companies sell beard trimmers that will do
>> that.
>I never knew that! Thank you Brad for elucidating.
Well, being a MacBook fanboy(1) that's walked a few red carpets(2) in my
time, I'd *have* to know
On Fri, Apr 18, 2014 at 9:52 PM, John Hasler wrote:
> Joel Rees writes:
> > If I tried to get my technical mailing lists on the mail account my
> > provider gives me, it'd overflow at least once a week, and I'd lose
> > valuable non-list mail.
>
> Free advertising supported services are not the o
On Thu, Apr 17, 2014 at 12:15 PM, Robert Holtzman wrote:
> > Or Apple, sacrifices your
> > security by wordsmithing. According to them, they don't get malware,
> their
> > computers just have "unwanted programs."
>
> Not ever being an Apple user, I hadn't heard that before. When I read
> your pos
Ahoj,
Dňa Fri, 18 Apr 2014 07:44:54 -0500 John Hasler
napísal:
> If you don't want
> messages you send to go through Gmail don't send them there.
Are you participating on the Googles's profit?
--
Slavko
http://slavino.sk
signature.asc
Description: PGP signature
Joel Rees writes:
> If I tried to get my technical mailing lists on the mail account my
> provider gives me, it'd overflow at least once a week, and I'd lose
> valuable non-list mail.
Free advertising supported services are not the only alternative to your
ISP. I get my mail via Newsguy. I pay t
Karl E. Jorgensen writes:
> Obviously, they had no need to save the actual *traffic*, merely the
> access point MAC address, signal strength and streetview car location
> to do this.
In any case, the traffic was broadcast into public space.
--
John Hasler
jhas...@newsguy.com
Elmwood, WI USA
--
Slavko writes:
> I wrote about processing emails by google, not about processing of
> the public archive(s). Or you hope, that disabling archive will stop
> google to processing them??? This ML i used as example only.
People who receive their email via Gmail choose to do so. Those who
send messag
On Friday 18 April 2014 12:59:02 Brad Rogers wrote:
> On Fri, 18 Apr 2014 08:11:27 + (UTC)
> Curt wrote:
>
> Hello Curt,
>
> >On 2014-04-18, Steve Litt wrote:
> >> * I can successfully shave myself to leave exactly four days
> >> growth.
> >
> >I've always wondered how those Macintosh fanboys
Slavko writes:
> How many members of this list (for example) want to contribute to the
> google knowledge?
I don't care one way or the other. The list is public. You are aware
that it is archived and that the archive is indexed by the search
engines? It is actually *intended* that everyone incl
On Fri, Apr 18, 2014 at 6:31 PM, Slavko wrote:
> Ahoj,
>
> Dňa Fri, 18 Apr 2014 19:24:20 +1000 Chris Angelico
> napísal:
>
> > On Fri, Apr 18, 2014 at 7:16 PM, Slavko wrote:
> > > How many members of this list (for example) want to contribute to
> > > the google knowledge? By the distributing t
On Fri, 18 Apr 2014 08:11:27 + (UTC)
Curt wrote:
Hello Curt,
>On 2014-04-18, Steve Litt wrote:
>> * I can successfully shave myself to leave exactly four days growth.
>I've always wondered how those Macintosh fanboys (and Hollywood
>celebrities, two overlapping sets) accomplished this.
R
On 18/04/14 09:11, Curt wrote:
On 2014-04-18, Steve Litt wrote:
* I can successfully shave myself to leave exactly four days growth.
I've always wondered how those Macintosh fanboys (and Hollywood
celebrities, two overlapping sets) accomplished this.
I assume they use an electric beard tri
Hi
This thread is going terribly off-topic, but I could not resist...
On Thu, Apr 17, 2014 at 07:45:38PM +0100, Joe wrote:
> Today, not only governments but private companies vacuum up every bit
> of data they can find, presumably just because they can. There is
> almost certainly a certain amoun
On Fri, Apr 18, 2014 at 7:31 PM, Slavko wrote:
> I wrote about processing emails by google, not about processing of
> the public archive(s). Or you hope, that disabling archive will stop
> google to processing them??? This ML i used as example only.
>
> But you can advocate the google's practices
Ahoj,
Dňa Fri, 18 Apr 2014 19:24:20 +1000 Chris Angelico
napísal:
> On Fri, Apr 18, 2014 at 7:16 PM, Slavko wrote:
> > How many members of this list (for example) want to contribute to
> > the google knowledge? By the distributing this list to gmail
> > addresses too...
>
> I do. It means that
On Fri, Apr 18, 2014 at 7:16 PM, Slavko wrote:
> How many members of this list (for example) want to contribute to the
> google knowledge? By the distributing this list to gmail addresses
> too...
I do. It means that a Google search for any of the topics discussed
here will show up results. You d
Ahoj,
Dňa Thu, 17 Apr 2014 16:17:28 -0500 John Hasler
napísal:
> > Take for example current controversies over services
> > like Amazon and Google and the "filter bubble": Do you consider it
> > harmful for them to tailor your experience to their estimate of
> > what you
>
> They are not given
On 2014-04-18, Steve Litt wrote:
>
> * I can successfully shave myself to leave exactly four days growth.
I've always wondered how those Macintosh fanboys (and Hollywood
celebrities, two overlapping sets) accomplished this.
(Maybe they'll come out with an IRazor so I can achieve a fashionable
st
On Thu, 17 Apr 2014 09:15:35 -0700
Robert Holtzman wrote:
> Not ever being an Apple user, I hadn't heard that before. When I read
> your post, I fell off the chair laughing. One more reason why I doubt
> if I will ever use an Apple computer or anything else.
I'm going to get a Macbook Air just
PaulNM writes:
> "Optional" for now. More and more these entities are moving away from
> using the browser to store identifying info.
> https://panopticlick.eff.org
Which means that they are relying on information that is under your
control. Few people will bother to spoof it and that's good be
On 04/17/2014 05:17 PM, John Hasler wrote:
>> Take for example current controversies over services
>> like Amazon and Google and the "filter bubble": Do you consider it
>> harmful for them to tailor your experience to their estimate of what you
>
> They are not given the opportunity to do so. Pa
> Take for example current controversies over services
> like Amazon and Google and the "filter bubble": Do you consider it
> harmful for them to tailor your experience to their estimate of what you
They are not given the opportunity to do so. Participation in such
systems is optional. In this
On Thu, 2014-04-17 at 14:39 -0500, John Hasler wrote:
. . .
> I keep information secret when revealing it might harm me. I make no
> deliberate effort to keep stuff secret just to prevent it from
> benefiting someone else.
Of course, that requires the ability to discern when some information
m
Joe writes:
> Certainly the case, but it's no longer just 'serious' secrets that
> hold an attraction. Just about any kind of information, held about
> large enough sets of people, can be of some commercial use.
I keep information secret when revealing it might harm me. I make no
deliberate effor
On Thu, 17 Apr 2014 09:34:35 -0500
John Hasler wrote:
> Lisi writes:
> > I simply don't want the world and his uncle knowing every last
> > little thing about me.
>
> I agree, but you have to realize that for most of us the world and his
> uncle are not interested in every little thing about us
On Wed, Apr 16, 2014 at 09:18:06PM -0400, Brad Alexander wrote:
> > Need i switch to proprietary software (yes, i know, that is no
> > solution)?
> >
>
> You could, but then, you end up in a situation where a corporate entity
> will sacrifice your security for their bottom line, for their next
> q
On 4/17/2014 10:31 AM, Curt wrote:
On 2014-04-17, Jerry Stuckle wrote:
This is a totally irresponsible post, showing the op knows very little
about programming.
http://en.wikipedia.org/wiki/Theo_de_Raadt
Theo de Raadt (/ˈθiː.oʊ dɛˈrɔːt/; Dutch: [ˈteː.o dɛˈraːt]; born May 19,
1968) is a
Lisi writes:
> I simply don't want the world and his uncle knowing every last little
> thing about me.
I agree, but you have to realize that for most of us the world and his
uncle are not interested in every little thing about us so it requires
little effort to keep them from learning it. I think
On 2014-04-17, Jerry Stuckle wrote:
>
> This is a totally irresponsible post, showing the op knows very little
> about programming.
http://en.wikipedia.org/wiki/Theo_de_Raadt
Theo de Raadt (/ˈθiː.oʊ dɛˈrɔːt/; Dutch: [ˈteː.o dɛˈraːt]; born May 19,
1968) is a software engineer who lives in Calg
On Thu, Apr 17, 2014 at 3:36 AM, ken wrote:
> Steve brings up a very good point, one often overlooked in our zeal for
> getting so much FOSS for absolutely no cost. Since we're all given the
> source code, we're all in part responsible for it and for improving it.
> This ethic should be visited
on't think the point is very good for the reasons outlined below (by
others).
http://www.datamation.com/open-source/does-heartbleed-disprove-open-source-is-safer-1.html
Robin Seggelmann, the OpenSSL developer who claims responsibility for
Heartbleed, says that both he and a reviewer mis
the point is very good for the reasons outlined below (by
others).
http://www.datamation.com/open-source/does-heartbleed-disprove-open-source-is-safer-1.html
Robin Seggelmann, the OpenSSL developer who claims responsibility for
Heartbleed, says that both he and a reviewer missed the bug. He con
On Thursday 17 April 2014 09:25:01 Slavko wrote:
> No problem :-) I know, that my English is poor and is far from
> good...
Your English is very good. Would that my knowledge of Balkan
languages were as good. :-)
See my comments on the problems with English in the email that crossed
with yours
On Thursday 17 April 2014 09:18:14 Slavko wrote:
> Sure, you are right. I am aware about own secrets. I am active
> (beside other things) in the improving knowledge about
> inadvisability of the Internet. And most of people around me
> responds, that they havo no things to hide. I have theory why t
Hi,
Dňa Thu, 17 Apr 2014 09:15:53 +0100 Lisi Reisz
napísal:
> > See: "yes, i know, that it is no solution" at end of the cited
> > text...
>
> I obviously misread that. That is not what I took that sentence to
> mean. See the word "need". :-)
No problem :-) I know, that my English is poor a
Hi,
Dňa Wed, 16 Apr 2014 21:18:06 -0400 Brad Alexander
napísal:
> > I am talking about encryption and the F/OSS in general and i have my
> > privacy in the mind. Here exists a lot of people int today world,
> > which tell, that they have nothing to hide.
>
> *Everybody* has something to hide. E
On Thursday 17 April 2014 09:01:42 Slavko wrote:
> Ahoj,
>
> Dňa Wed, 16 Apr 2014 23:56:43 +0100 Lisi Reisz
>
>
> napísal:
> > On Wednesday 16 April 2014 22:43:40 Slavko wrote:
> > > Is it a my mistake, that i cannot help with this? Am i
> > > expecting a lot? Need i switch to proprietary software
Ahoj,
Dňa Wed, 16 Apr 2014 23:56:43 +0100 Lisi Reisz
napísal:
> On Wednesday 16 April 2014 22:43:40 Slavko wrote:
> > Is it a my mistake, that i cannot help with this? Am i expecting a
> > lot? Need i switch to proprietary software (yes, i know, that is no
> > solution)?
>
> And you believe tha
On 04/16/2014 11:50 PM green wrote:
Steve Litt wrote at 2014-04-16 13:05 -0500:
I'd feel a lot better with 200 eyes than 4. Even 10 would make me
nervous.
But the fault is partly mine. I never contributed to the OpenSSL
project, either with dollars or eyes.
+1
Steve brings up a very good p
Steve Litt wrote at 2014-04-16 13:05 -0500:
> I'd feel a lot better with 200 eyes than 4. Even 10 would make me
> nervous.
>
> But the fault is partly mine. I never contributed to the OpenSSL
> project, either with dollars or eyes.
+1
signature.asc
Description: Digital signature
On Thu, 2014-04-17 at 03:35 +0200, Ralf Mardorf wrote:
>
> On Wed, 2014-04-16 at 21:18 -0400, Brad Alexander wrote:
> > *Everybody* has something to hide. Everyone. Don't believe me? Offer
> > to put a public webcam in their bathroom. :D
>
> That's why I don't have a webcam in my bathroom and ass
As soon as heartbleed was found, they patched the OpenSSL package. My
servers are in the process of being patched and when they are, the SSL
certs will be updated. This door was open for a long time when nobody had
seen it, but the door was shut and nailed closed as soon as the problem was
On Wed, 2014-04-16 at 21:18 -0400, Brad Alexander wrote:
> *Everybody* has something to hide. Everyone. Don't believe me? Offer
> to put a public webcam in their bathroom. :D
That's why I don't have a webcam in my bathroom and assumed my iPad
would be connected to the Internet, I would paste a l
On Wed, Apr 16, 2014 at 5:43 PM, Slavko wrote:
> Ahoj,
>
> I am talking about encryption and the F/OSS in general and i have my
> privacy in the mind. Here exists a lot of people int today world, which
> tell, that they have nothing to hide.
*Everybody* has something to hide. Everyone. Don't be
On Wednesday 16 April 2014 22:43:40 Slavko wrote:
> Is it a my mistake, that i cannot help with this? Am i expecting a
> lot? Need i switch to proprietary software (yes, i know, that is no
> solution)?
And you believe that proprietary software is _better_?? :-/
Lisi
--
To UNSUBSCRIBE, email to
Ahoj,
Dňa Tue, 15 Apr 2014 22:32:26 -0500 Bill Wood
napísal:
> I've been following this thread since it started, as well as some
> other Internet sites that have been mentioned, and I have noticed that
> everyone talks about the impact on the financial services sector but
> no one has mentioned
On Wed, 16 Apr 2014 08:48:01 -0600
Paul E Condon wrote:
> On 20140416_0823+, Curt wrote:
> > On 2014-04-16, Slavko wrote:
> > Robin Seggelmann introduced the bug:
> >
> > >From the Sydney Morning Herald:
> >
> > Dr Seggelmann, of Münster in Germany, said the bug which
> > introduced the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 04/16/2014 10:36 AM, Bill Wood wrote:
> On Wed, 2014-04-16 at 09:01 -0400, shawn wilson wrote:
>> On Wed, Apr 16, 2014 at 8:54 AM, John Hasler
>> wrote:
> . . .
>>> What is medical identity theft?
>
> Theft of patient identity information, usually
On 2014-04-16, Paul E Condon wrote:
>>
>> Only four eyes?
>
> This is a silly rhetorical question.
> How many 'eyes' are appropriate for a last, final look?
> Many, many eyes had surely already looked at the same code before
> this final look.
We're talking about code *review*.
>From the Syd
On 20140416_0754-0500, John Hasler wrote:
> Bill Wood writes:
> > I have noticed that everyone talks about the impact on the financial
> > services sector but no one has mentioned the health care information
> > sector. I understand that healthcare systems use SSL a great deal,
> > and medical ide
Perhaps smiles.
After all most countries do not associate so much critical information
to one number.
But many people do not put their private information by choice in places where
security of a site is a risk either so.
Sorry for the side track smiles.
Kare
On Wed, 16 Apr 2014, Lisi Reisz wr
On 20140416_0823+, Curt wrote:
> On 2014-04-16, Slavko wrote:
> >
> > If this vulnerability comes not from newbie and was made by intent,
> > thing are worse than wrong. Then it is an attack to alone fundamental of
> > the free/open software. And what community about this? Where are
> > inform
On Wed, 2014-04-16 at 09:01 -0400, shawn wilson wrote:
> On Wed, Apr 16, 2014 at 8:54 AM, John Hasler wrote:
. . .
> > What is medical identity theft?
Theft of patient identity information, usually for the purpose of
insurance fraud.
> I'd also be interested seeing the proof for the claim (I
On Wednesday 16 April 2014 14:54:03 Karen Lewellen wrote:
> I give you an example of medical identity theft. At least how it
> can happen stateside.
> You are say a senior or someone with a print disability in a
> doctor's office.
> You must get help completing the forms, and the first question yo
I give you an example of medical identity theft. At least how it can happen
stateside.
You are say a senior or someone with a print disability in a doctor's
office.
You must get help completing the forms, and the first question you
must provide is...?
your social security umber. Add that you
On Wed, Apr 16, 2014 at 8:54 AM, John Hasler wrote:
> Bill Wood writes:
>> and medical identity theft has risen sharply in recent years.
>
> What is medical identity theft?
I'd also be interested seeing the proof for the claim (I think he
means medical data breaches but IDK anyone has disclosed
Bill Wood writes:
> I have noticed that everyone talks about the impact on the financial
> services sector but no one has mentioned the health care information
> sector. I understand that healthcare systems use SSL a great deal,
> and medical identity theft has risen sharply in recent years.
What
On 2014-04-16, Slavko wrote:
>
> If this vulnerability comes not from newbie and was made by intent,
> thing are worse than wrong. Then it is an attack to alone fundamental of
> the free/open software. And what community about this? Where are
> information, from who this vulnerability arrived? It
Dňa 16. 4. 2014 1:50 Charles Kroeger wrote / napísal(a):
> At this point, the probability is close to one that every target has had
> its private keys extracted by multiple intelligence agencies. The real
> question is whether or not someone deliberately inserted this bug into
> OpenSSL, and
risen sharply in recent years. Does anyone know if there have been any
exploits of Heartbleed in this sector, or if any healthcare
organizations have said anything about fixing the problem?
--
Bill Wood
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject o
ves/2014/04/heartbleed.html
Here's the article from Bruce's CRYPT-GRAM from April 15, 2014:
Heartbleed
Heartbleed is a catastrophic bug in OpenSSL:
"The Heartbleed bug allows anyone on the Internet to read the
memory of the systems protected by the vulnerable versions of
On Tue, Apr 15, 2014 at 02:11:00PM +1200, Richard Hector wrote:
> On 15/04/14 12:59, shawn wilson wrote:
> >> That statement was made in the sense that at least the bank could have
> >> > issued a statement along the lines of 'you may have heard of the
> >>
On 14/04/14 23:41, Richard Hector wrote:
> The only local bank I've heard any info about is Kiwibank, who are
> apparently not vulnerable due to running their systems on Windows.
Heh. It turns out my bank, ASB, apparently uses Windows/IIS as well. I
have yet to decide whether I'm happy about that.
pt that in the case of an uncorrected vulnerability you might then
be offering the black hats your new password, whereas they might not have
been aware of the old one (before the news broke).
Logic would seem to suggest changing passwords for sites with corrected
heartbleed vulnerabilities; how to ga
#x27;re a bank therefore they're
> a financial institution therefore they use IBM mainframes ..."
I read that certain banks in Germany had the heartbleed bug and are in the
process of fixing it – which they hopefully completed by now.
So I recommend to ask your bank whether they ha
1 - 100 of 179 matches
Mail list logo
