Heartbleed-Vulnerability/EN

Aus Siwecos
Wechseln zu: Navigation, Suche

Check for the Heartbleed vulnerability.

If the result is positive, there is no need for further action. If the result is negative, please read the following instructions.

Result positive Not vulnerable to Heartbleed
Result negativ Vulnerable to Heartbleed
Description The server is vulnerable to a Heartbleed attack. As a result, an attacker could read sensitive data from the server's working memory, such as private keys and customer data.
Background Heartbleed is described as the most serious security gap of all times, and has existed since 2011. The security gap is located in a software called OpenSSL, which is supposed to protect the communication of data through the internet via the SSL security protocol. The source code of the OpenSSL software was checked and the security gap has been closed.
Consequence The server is vulnerable through a security flaw which allows an attacker to gain access to your server.
Solution/Tips In case of vulnerability update your TLS implementation on your server immediately.