You do not have to regenerate the CA key or certificate.
You do have to regenerate the web server keys and certificates.
https://www.cloudflarechallenge.com/heartbleed has had multiple people
independently obtain their private key.
-Kyle H
On Fri, Apr 11, 2014 at 12:59 PM, Jeronimo L. Cabral
wr
Ø do I have to regenerate my CA certificate created with the former openssl
version because of the Hearthbleed vulnerability ???
There should never be any reason for your web server to read the private key
of the CA.
So, no.
--
Principal Security Engineer
Akamai Technology
Cambridge, MA