Many of you may have heard recently about a security vulnerability affecting secure data transmission on the Internet. This bug, deemed the Heartbleed Bug, affects OpenSSL, the open-source encryption standard used by most websites.
On Monday, April 8, CaTS began a review of the OpenSSL deployment for all CaTS-managed servers. The initial results indicate our servers are not affected by this vulnerability. However, we will be performing a thorough scan of all CaTS-managed servers to ensure no systems have been overlooked.
Although CaTS is looking at web servers owned by the university, the Heartbleed bug has affected many other websites, and your secure information could be compromised. For a general overview of this bug and the steps you should take to secure your information, see the following
website:
http://www.businessinsider.com/heartbleed-bug-explainer-2014-4
If you have questions or concerns about this vulnerability please contact the Help Desk at (937) 775-4827.
This list is maintained by Computing and Telecommunications Services.
