Quote:
Originally Posted by Wolferz
It's the side benefit that DARPA had planned from the get go. Easy access for intelligence gathering and information control purposes.
Orwell was only off by what, thirty years?  |
Nothing like that, I suppose.
In fact, the bug is a bug of
a specific implementation of OpenSSL (aka: source code bug) not a bug in the design of the protocol itself.
To be more precise, AFAIK the bug is in portion of a source code wrote to implement the RFC Heartbeat Extension around Decemeber 2011.
So server using older version of OpenSSL were not affected by the bug (only about 1/3 of all servers, from what I red).