Skip to content

Instantly share code, notes, and snippets.

@Tushkiz

Tushkiz/protect.md

Created April 8, 2014 19:23
Show Gist options
  • Save Tushkiz/10175635 to your computer and use it in GitHub Desktop.
Save Tushkiz/10175635 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
protect.md

##Instructions to protect your services?

  1. Check whether your website, apps or any products use OpenSSL and whether they are vulnerable to the attack. There is a neat site at http://filippo.io/Heartbleed/ where you can quickly run the check.
  2. Update OpenSSL to the latest version which fixes the defect – this is not an automatic process in many cases. See the advisory here.
  3. Check the state of the your SSL configuration for your website and mail services. You can use this SSL checker and CheckTLS for mail servers. This bug is the least of your worries if you are using the technology badly in the first place.
  4. Take a look at the more technical Q&A at http://heartbleed.com/ if you have further questions about the bug or how to remediate it.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment