obitalk.com affected by heartbleed bug ??

Started by st167, April 09, 2014, 05:47:40 PM

Previous topic - Next topic

st167

Looks like www.obitalk.com is affected by heartbleed bug.
I'm no expert in all these but any idea if it's true or not? and if yes, then I hope OBi people are working to fix it.

Time to change password !  :'(

https://www.ssllabs.com/ssltest/analyze.html?d=obitalk.com

wvoc

Bump for this. Simple bot testing I did a few minutes ago shows obitalk.com was at least patched, but we need an official response to your question.

If it was effected and patched, but the private keys were not revoked and reissued, then updating to fix CVE-2014-0160 is almost meaningless as the private keys may already be in the wild (meaning complete security breech in perpetuity till certs revoked and reissued). So Obihai needs to tell us if it was effected and, if so, whether they have completed all the steps necessary to fix.

Marc

Any official word on this from Obihai/obitalk?
OBi110 (stored in closet now,) OBi200 x 3, Polycom 200 x 1, OBi202 x 4, Polycom 202 x 2, OBi1032 x 3, OBi1062 x 5, OBi2182 x 3

Combination of GV (consumer,) CallCentric & voip.ms both direct and via Asterisk.