Η NSA ανησυχεί τόσο πολύ για την ασφάλεια των δεδομένων του καθενός από εμάς που εξέδωσε μια ανακοίνωση με προτάσεις για το πώς αποφύγουμε την διαρροή πληροφοριών, λόγω του errorof OpenSSL's Heartbleed.
It's really quite ironic since we all know by now that the intelligence agency is watching his movements in the Internet and intercepts information.
Η NSΑ λοιπόν που ανησυχεί για την ασφάλεια μας, αναφέρει ότι θα πρέπει αναβαθμίσουμε τα clients TLS/dtls στους servers που χρησιμοποιούμε με την τελευταία έκδοση της OpenSSL (1.0.1g) ή να τρέξουμε ένα recompile στην παλιά έκδοση της OpenSSL με την επιλογή "DOPENSSL_NO_HEARTBEATS."
Continuing very seriously to be jealous of our NSA reports that many operating systems and clients in the server software run OpenSSL, that means they are vulnerable to Heartbleed. In this case, the secret service suggests that you contact the software vendor to see if there is a risk and ask for an update to fix things.
"For any systems that are affected by this vulnerability, use TLS/DTLS, and have exposure to Internet connectivity for potential exploitation of this vulnerability, revoke and reissue certificates and other credentials utilized on those systems after applying the Update", Says the NSA driver.
It is suspected that the NSA knew about Heartbleed for years and kept it secret so that it could exploit the vulnerability. After the latest releases revealing the vulnerability, the US Secret Service saw fit to let us know, keeping the pretense at least.
