Its security hole OpenSSL with the name heartbleed which has been discovered, is such a serious issue for Internet security today, all of whom are talking about it. OpenSSL 1,01 - the only version affected - was released on March 12, 2012. This means that tens of millions of websites were potentially vulnerable to attacks through this vulnerability. Fortunately, OpenSSL was fixed with the release of OpenSSL 1,01g on April 7th.
How Serious Is Vulnerability? Δημοφιλή sites όπως το Yahoo, το Imgur και το Okcupid όλα υποφέρουν από αυτή. Η OpenSSL είναι το προεπιλεγμένο Secure-Socket Layer/Transport Layer Security (SSL/TLS) για τους διακομιστές του Web, Apache and Nginx. According to somepriceclaims that two-thirds of all "secure" Web sites are vulnerable to the Heartbleed bug.
The issue is even worse, since they are POCs are available even for script-kiddies which are now trying to attack secure Web sites. Is your site vulnerable to such an attack? You can check your site with Heartbleed test.
The good news is that operating systems companies today released patches for OpenSSL clients. So far, Linux fixed operating systems: CentOS, Debian, Fedora, Red Hat, openSUSEAnd Ubuntu, έχουν διαθέσει ενημερωμένες εκδόσεις. Το SUSE Linux Enterprise Server & Hosting (SLES) is not affected by the attack. If you have any doubt about the security of your servers, perform the bug check and update as soon as possible with the appropriate patch. This is no time to play with your safety. The security of your systems, users and customers all depend on this update.