I am running a production environment using SPDY protocol. Can anyone tell me if I am vulnerable, here is a link to my production environement and if so, how can I fix it:
Asked
Active
Viewed 189 times
0
-
3`SPDY` is a higher level protocol, and it requires SSL/TLS. Its similar to asking if Heartbleed affects `HTTPS`. The problem is lower down in TLS. β jww Apr 08 '14 at 18:44
-
It affects TLS/SSL, and therefore any protocol layered over it. We don't need a question like this per protocol. β user207421 Apr 12 '14 at 23:21
-
@jww It's off-topic all right, but because it isn't about programming. It's not about software version or administration or patching. Not every Heartbleed question is about that. Please don't shotgun all Heartbleed questions the same way. β user207421 Apr 12 '14 at 23:23
1 Answers
3
Yes, for SPDY protocol implementations and configurations that reference the OpenSSL library version 1.0.1 before version 1.0.1g, but itβs otherwise not specific to the SPDY protocol, itself.
danorton
- 11,804
- 7
- 44
- 52