OpenSSL heartbleed bug / Shibboleth implications

Jim Fox fox at
Tue Apr 8 15:34:11 EDT 2014

> I would replace your public-facing SSL keys/certificates if I were you.

That's of little value until the old certificates get out on a CRL.

> That's relatively easy.

Assuming that your CA can handle a few million revocation requests 
all at once.


More information about the users mailing list