> > Should we consider issuing an OSSN describing steps for heartbleed > mitigation in OpenStack deployments ? I know it's not very different > from other affected SSL services, but I've already answered that > question twice on MLs and people are apparently very confused about it > so it looks like something that could use a reference official answer :) > Unless we have something specifically related to OpenStack to add, I'd suggest just pointing people to http://heartbleed.com/. -bryan -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.openstack.org/pipermail/openstack-security/attachments/20140409/25f700e9/attachment.html>