[google-appengine] Re: Heartbleed bug?
Please see: http://googleonlinesecurity.blogspot.com/ On Tuesday, April 8, 2014 7:19:49 AM UTC-7, Doug Anderson wrote: Is App Engine's SSL protected from the OpenSSL heartbleed bug? Since a Google Engineer discovered the bug I figure there's a good chance App Engine has the patch. ??? http://heartbleed.com/ https://www.openssl.org/news/secadv_20140407.txt -- You received this message because you are subscribed to the Google Groups Google App Engine group. To unsubscribe from this group and stop receiving emails from it, send an email to google-appengine+unsubscr...@googlegroups.com. To post to this group, send email to google-appengine@googlegroups.com. Visit this group at http://groups.google.com/group/google-appengine. For more options, visit https://groups.google.com/d/optout.
[google-appengine] Re: Heartbleed bug?
As I understand it, the post says that App Engine was vulnerable to Heartbleed. Given this, its possible that private keys for custom domains could have leaked, so does Google recommend that we change these keys? I realize I probably just answered my own question, I was just hoping for some more guidance on this. --Alex On Wednesday, April 9, 2014 4:11:40 PM UTC-4, Charlie Fineman wrote: Please see: http://googleonlinesecurity.blogspot.com/ On Tuesday, April 8, 2014 7:19:49 AM UTC-7, Doug Anderson wrote: Is App Engine's SSL protected from the OpenSSL heartbleed bug? Since a Google Engineer discovered the bug I figure there's a good chance App Engine has the patch. ??? http://heartbleed.com/ https://www.openssl.org/news/secadv_20140407.txt -- You received this message because you are subscribed to the Google Groups Google App Engine group. To unsubscribe from this group and stop receiving emails from it, send an email to google-appengine+unsubscr...@googlegroups.com. To post to this group, send email to google-appengine@googlegroups.com. Visit this group at http://groups.google.com/group/google-appengine. For more options, visit https://groups.google.com/d/optout.
[google-appengine] Re: Heartbleed bug?
going through ???.appspot.com appears to be clean (not vulnerable to heartbleed)... still not sure about custom domains. On Tuesday, April 8, 2014 10:19:49 AM UTC-4, Doug Anderson wrote: Is App Engine's SSL protected from the OpenSSL heartbleed bug? Since a Google Engineer discovered the bug I figure there's a good chance App Engine has the patch. ??? http://heartbleed.com/ https://www.openssl.org/news/secadv_20140407.txt -- You received this message because you are subscribed to the Google Groups Google App Engine group. To unsubscribe from this group and stop receiving emails from it, send an email to google-appengine+unsubscr...@googlegroups.com. To post to this group, send email to google-appengine@googlegroups.com. Visit this group at http://groups.google.com/group/google-appengine. For more options, visit https://groups.google.com/d/optout.