Heartbleed-Vulnerability/EN

Aus Siwecos
Wechseln zu: Navigation, Suche

Check for the Heartbleed vulnerability.

If the result is positive, there is no need for further action. If the result is negative, please read the following instructions.

Result positive Not vulnerable to Heartbleed
Result negativ Vulnerable to Heartbleed
Description The server is vulnerable to a Heartbleed attack. As a result, an attacker could read sensitive data from the server's working memory, such as private keys and customer data.
Background Heartbleed is described as the most serious security vulnerability of all time and has existed since 2011. The vulnerability exists in a software called OpenSSL, which is designed to protect the communication of data on the Internet via the TLS security protocol. The gap in OpenSSL has already been closed for several years.
Consequence The server is vulnerable through a security flaw which allows an attacker to gain access to your server.
Solution/Tips In case of vulnerability update your TLS implementation on your server immediately.