[google-appengine] Re: Heartbleed bug?

2014-04-09 Thread Alex Burgel
As I understand it, the post says that App Engine was vulnerable to Heartbleed. Given this, its possible that private keys for custom domains could have leaked, so does Google recommend that we change these keys? I realize I probably just answered my own question, I was just hoping for some mo

[google-appengine] Re: Heartbleed bug?

2014-04-09 Thread Charlie Fineman
Please see: http://googleonlinesecurity.blogspot.com/ On Tuesday, April 8, 2014 7:19:49 AM UTC-7, Doug Anderson wrote: > > Is App Engine's SSL protected from the OpenSSL heartbleed bug? Since a > Google Engineer discovered the bug I figure there's a good chance App > Engine has the patch. ??? >

[google-appengine] Re: Heartbleed bug?

2014-04-08 Thread Doug Anderson
going through ???.appspot.com appears to be clean (not vulnerable to heartbleed)... still not sure about custom domains. On Tuesday, April 8, 2014 10:19:49 AM UTC-4, Doug Anderson wrote: > > Is App Engine's SSL protected from the OpenSSL heartbleed bug? Since a > Google Engineer discovered the