https://connect.hyland.com/t5/alfresco-archive/heartbeat-open-ssl-vulnerability-what-is-alfresco-doing-in/m-p/285967#M239097 <HTML><HEAD></HEAD><BODY><SPAN>For folks who cannot log in to the support portal, Pete has added a post in the Announcements forum here:</SPAN><BR /><A href="http://forums.alfresco.com/forum/general/announcements/heartbleed-ssl-vulnerability-cve-2014-0160-04112014-1429" rel="nofollow noopener noreferrer">http://forums.alfresco.com/forum/general/announcements/heartbleed-ssl-vulnerability-cve-2014-0160-04112014-1429</A><BR /><BR /><SPAN>Jeff</SPAN></BODY></HTML> Fri, 11 Apr 2014 14:37:26 GMT jpotts 2014-04-11T14:37:26Z https://connect.hyland.com/t5/alfresco-archive/heartbeat-open-ssl-vulnerability-what-is-alfresco-doing-in/m-p/285964#M239094 Assuming the servers which are hosting alfresco are Linux based, have the servers been checked to see if they are vulnerable to the OpenSSL heartbeat vulnerability?&nbsp; When were the servers updated?What else is being done to pre-emptively address possibly exposed certificates, passwords, encryption ke Thu, 10 Apr 2014 19:57:39 GMT https://connect.hyland.com/t5/alfresco-archive/heartbeat-open-ssl-vulnerability-what-is-alfresco-doing-in/m-p/285964#M239094 dmertz123 2014-04-10T19:57:39Z https://connect.hyland.com/t5/alfresco-archive/heartbeat-open-ssl-vulnerability-what-is-alfresco-doing-in/m-p/285965#M239095 <HTML><HEAD></HEAD><BODY><SPAN>Thanks for the enquiry. I can confirm that all servers at Alfresco have been patched and all necessary authentication tokens rotated. Please see our statement on the matter at </SPAN><A href="https://portalalfresco.secure.force.com/articles/en_US/Security_Bulletin/OpenSSL-vulnerability-Heartbleed-Bug" rel="nofollow noopener noreferrer">https://portalalfresco.secure.force.com/articles/en_US/Security_Bulletin/OpenSSL-vulnerability-Heartbleed-Bug</A></BODY></HTML> Fri, 11 Apr 2014 08:40:15 GMT https://connect.hyland.com/t5/alfresco-archive/heartbeat-open-ssl-vulnerability-what-is-alfresco-doing-in/m-p/285965#M239095 petep 2014-04-11T08:40:15Z https://connect.hyland.com/t5/alfresco-archive/heartbeat-open-ssl-vulnerability-what-is-alfresco-doing-in/m-p/285966#M239096 <HTML><HEAD></HEAD><BODY><SPAN>Patches have been applied.</SPAN><BR /><BR /><SPAN>I'm not in a position to give further details and wouldn't post specific security details anyway.</SPAN></BODY></HTML> Fri, 11 Apr 2014 08:44:39 GMT https://connect.hyland.com/t5/alfresco-archive/heartbeat-open-ssl-vulnerability-what-is-alfresco-doing-in/m-p/285966#M239096 mrogers 2014-04-11T08:44:39Z https://connect.hyland.com/t5/alfresco-archive/heartbeat-open-ssl-vulnerability-what-is-alfresco-doing-in/m-p/285967#M239097 <HTML><HEAD></HEAD><BODY><SPAN>For folks who cannot log in to the support portal, Pete has added a post in the Announcements forum here:</SPAN><BR /><A href="http://forums.alfresco.com/forum/general/announcements/heartbleed-ssl-vulnerability-cve-2014-0160-04112014-1429" rel="nofollow noopener noreferrer">http://forums.alfresco.com/forum/general/announcements/heartbleed-ssl-vulnerability-cve-2014-0160-04112014-1429</A><BR /><BR /><SPAN>Jeff</SPAN></BODY></HTML> Fri, 11 Apr 2014 14:37:26 GMT https://connect.hyland.com/t5/alfresco-archive/heartbeat-open-ssl-vulnerability-what-is-alfresco-doing-in/m-p/285967#M239097 jpotts 2014-04-11T14:37:26Z