51°F

Aaron Parecki

  • Articles
  • Notes
  • Photos

#heartbleed

  • Akamai Heartbleed Response (blogs.akamai.com)
    Sat, Apr 12, 2014 2:29am -07:00 #heartbleed #ops #ssl
  • SwiftOnSecurity (twitter.com)
    I patched OpenSSL and due to the nature of the bug had to tell my old SSL cert that we are never, ever, ever getting back together.
    Thu, Apr 10, 2014 3:08pm -07:00 #heartbleed #ssl
  • Reverse Heartbleed Tester (reverseheartbleed.com)
    Thu, Apr 10, 2014 2:01pm -07:00 #heartbleed #ops #security #ssl
  • What should a website operator do about the Heartbleed OpenSSL exploit? (security.stackexchange.com)
    Thu, Apr 10, 2014 1:35pm -07:00 #heartbleed #openssl #ops #security
  • How to explain Heartbleed without technical terms? (security.stackexchange.com)
    Thu, Apr 10, 2014 1:22pm -07:00 #heartbleed #ops #security #ssl
  • Erik Berlin https://twitter.com/sferik   •   Apr 8
    @aaronpk @JamesChevalier Wow. That’s horrible.
    Aaron Parecki
    @sferik Yep. I managed to track it down tho: http://aaronparecki.com/articles/2014/04/08/1/ #heartbleed
    Portland, Oregon, USA
    Tue, Apr 8, 2014 4:57pm -07:00 #heartbleed
  • How to test and confirm OpenSSL is updated for Nginx and Ruby on Ubuntu 12.04

    A quick guide to updating OpenSSL on Ubuntu 12.04 running Nginx and Ruby and verifying that your system is safe from the Heartbleed bug.
    continue reading...
    7 likes 6 reposts 11 replies 2 mentions
    Tue, Apr 8, 2014 3:16pm -07:00 #heartbleed #ops #ubuntu #linux #openssl #ssl
  • Erik Berlin https://twitter.com/sferik   •   Apr 8
    To check the version of OpenSSL Ruby was built with:
    ruby -r openssl -e 'puts OpenSSL::OPENSSL_VERSION'
    Anything below 1.0.1g is vulnerable.
    Aaron Parecki
    @JamesChevalier @sferik Thanks but on Ubuntu `openssl version` always says "OpenSSL 1.0.1 14 Mar 2012" even for the correctly patched version. #heartbleed http://askubuntu.com/questions/444702/how-to-patch-cve-2014-0160-in-openssl
    Portland, Oregon, USA
    2 replies
    Tue, Apr 8, 2014 3:06pm -07:00 #heartbleed
  • Aaron Parecki
    So uh, how can I confirm my Ruby is actually using the recompiled OpenSSL (Ubuntu 12.04) #heartbleed
    Portland, Oregon, USA
    1 reply
    Tue, Apr 8, 2014 2:59pm -07:00 #heartbleed
  • Aaron Parecki
    Let me rephrase that: If you run an API that sends webhooks, your users can #heartbleed your API servers
    Portland, Oregon, USA
    1 like 4 reposts 1 reply
    Tue, Apr 8, 2014 1:26pm -07:00 #heartbleed
  • Aaron Parecki
    So wait, a malicious server can also #heartbleed clients too?
    Portland, Oregon, USA
    Tue, Apr 8, 2014 12:59pm -07:00 #heartbleed
older

Hi, I'm Aaron Parecki, Director of Identity Standards at Okta, and co-founder of IndieWebCamp. I maintain oauth.net, write and consult about OAuth, and participate in the OAuth Working Group at the IETF. I also help people learn about video production and livestreaming. (detailed bio)

I've been tracking my location since 2008 and I wrote 100 songs in 100 days. I've spoken at conferences around the world about owning your data, OAuth, quantified self, and explained why R is a vowel. Read more.

  • Director of Identity Standards at Okta
  • IndieWebCamp Founder
  • OAuth WG Editor
  • OpenID Board Member

  • 🎥 YouTube Tutorials and Reviews
  • 🏠 We're building a triplex!
  • ⭐️ Life Stack
  • ⚙️ Home Automation
  • All
  • Articles
  • Bookmarks
  • Notes
  • Photos
  • Replies
  • Reviews
  • Trips
  • Videos
  • Contact
© 1999-2025 by Aaron Parecki. Powered by p3k. This site supports Webmention.
Except where otherwise noted, text content on this site is licensed under a Creative Commons Attribution 3.0 License.
IndieWebCamp Microformats Webmention W3C HTML5 Creative Commons
WeChat ID
aaronpk_tv