Re: [sage-devel] Heartbleed
On Wed, Apr 9, 2014 at 11:29 AM, kcrisman wrote: > > > On Tuesday, April 8, 2014 11:20:02 PM UTC-4, William wrote: >> >> >> On Apr 8, 2014 8:06 PM, "kcrisman" wrote: >> > >> > >> > http://www.zdnet.com/heartbleed-serious-openssl-zero-day-vulnerability-revealed-728166/ >> > >> > Apparently this is a real vulnerability in OpenSSL. So... just fyi. >> > What version does sagenb, cloud, sage cell use? >> > >> >> Sagemathcloud is patched. >> Sagenb doesn't use SSL. >> >> > > > Really? > http://www.sagemath.org/doc/reference/notebook/sagenb/notebook/notebook_object.html#sagenb.notebook.notebook_object.NotebookObject > says it does for secure=True but I am probably speaking out of huge loads of > ignorance... I'm sorry; let me clarify. The website "http://sagenb.org"; does not use SSL. The notebook server itself support ssl. William > > -- > You received this message because you are subscribed to the Google Groups > "sage-devel" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to sage-devel+unsubscr...@googlegroups.com. > To post to this group, send email to sage-devel@googlegroups.com. > Visit this group at http://groups.google.com/group/sage-devel. > For more options, visit https://groups.google.com/d/optout. -- William Stein Professor of Mathematics University of Washington http://wstein.org -- You received this message because you are subscribed to the Google Groups "sage-devel" group. To unsubscribe from this group and stop receiving emails from it, send an email to sage-devel+unsubscr...@googlegroups.com. To post to this group, send email to sage-devel@googlegroups.com. Visit this group at http://groups.google.com/group/sage-devel. For more options, visit https://groups.google.com/d/optout.
Re: [sage-devel] Heartbleed
On Tuesday, April 8, 2014 11:20:02 PM UTC-4, William wrote: > > > On Apr 8, 2014 8:06 PM, "kcrisman" > > wrote: > > > > > http://www.zdnet.com/heartbleed-serious-openssl-zero-day-vulnerability-revealed-728166/ > > > > Apparently this is a real vulnerability in OpenSSL. So... just fyi. > What version does sagenb, cloud, sage cell use? > > > > Sagemathcloud is patched. > Sagenb doesn't use SSL. > > > Really? http://www.sagemath.org/doc/reference/notebook/sagenb/notebook/notebook_object.html#sagenb.notebook.notebook_object.NotebookObject says it does for secure=True but I am probably speaking out of huge loads of ignorance... -- You received this message because you are subscribed to the Google Groups "sage-devel" group. To unsubscribe from this group and stop receiving emails from it, send an email to sage-devel+unsubscr...@googlegroups.com. To post to this group, send email to sage-devel@googlegroups.com. Visit this group at http://groups.google.com/group/sage-devel. For more options, visit https://groups.google.com/d/optout.
Re: [sage-devel] Heartbleed
On Tue, Apr 8, 2014 at 8:20 PM, William Stein wrote: > > On Apr 8, 2014 8:06 PM, "kcrisman" wrote: >> >> >> http://www.zdnet.com/heartbleed-serious-openssl-zero-day-vulnerability-revealed-728166/ >> >> Apparently this is a real vulnerability in OpenSSL. So... just fyi. What >> version does sagenb, cloud, sage cell use? >> > > Sagemathcloud is patched. > Sagenb doesn't use SSL. > > >> (Also, sagemath.org seems to currently be down?) >> > > No it's up. However, it may have been down when you sent that, since we got this message from our sysadmins: " Kevin Loranger 9:34 PM (16 minutes ago) to business at 2128 www.math.washington.edu was NOT reachable. Five minutes later www.math.washington.edu come up very slow. UWTech is working this network issue. -- Kevin Loranger https://sites.google.com/a/uw.edu/kevinloranger/ ___ Math business mailing list busin...@math.washington.edu" -- You received this message because you are subscribed to the Google Groups "sage-devel" group. To unsubscribe from this group and stop receiving emails from it, send an email to sage-devel+unsubscr...@googlegroups.com. To post to this group, send email to sage-devel@googlegroups.com. Visit this group at http://groups.google.com/group/sage-devel. For more options, visit https://groups.google.com/d/optout.
Re: [sage-devel] Heartbleed
On Apr 8, 2014 8:06 PM, "kcrisman" wrote: > > http://www.zdnet.com/heartbleed-serious-openssl-zero-day-vulnerability-revealed-728166/ > > Apparently this is a real vulnerability in OpenSSL. So... just fyi. What version does sagenb, cloud, sage cell use? > Sagemathcloud is patched. Sagenb doesn't use SSL. > (Also, sagemath.org seems to currently be down?) > No it's up. > - kcrisman > > -- > You received this message because you are subscribed to the Google Groups "sage-devel" group. > To unsubscribe from this group and stop receiving emails from it, send an email to sage-devel+unsubscr...@googlegroups.com. > To post to this group, send email to sage-devel@googlegroups.com. > Visit this group at http://groups.google.com/group/sage-devel. > For more options, visit https://groups.google.com/d/optout. -- You received this message because you are subscribed to the Google Groups "sage-devel" group. To unsubscribe from this group and stop receiving emails from it, send an email to sage-devel+unsubscr...@googlegroups.com. To post to this group, send email to sage-devel@googlegroups.com. Visit this group at http://groups.google.com/group/sage-devel. For more options, visit https://groups.google.com/d/optout.
[sage-devel] Heartbleed
http://www.zdnet.com/heartbleed-serious-openssl-zero-day-vulnerability-revealed-728166/ Apparently this is a real vulnerability in OpenSSL. So... just fyi. What version does sagenb, cloud, sage cell use? (Also, sagemath.org seems to currently be down?) - kcrisman -- You received this message because you are subscribed to the Google Groups "sage-devel" group. To unsubscribe from this group and stop receiving emails from it, send an email to sage-devel+unsubscr...@googlegroups.com. To post to this group, send email to sage-devel@googlegroups.com. Visit this group at http://groups.google.com/group/sage-devel. For more options, visit https://groups.google.com/d/optout.