---

Heartbleed and Heartache in FOSS Town

Well it’s been a wild few weeks here in the Linux blogosphere, thanks not just to XP’s demise but also the long-overdue discovery of the all-pervasive Heartbleed bug.

That the bug is “catastrophic” appears to be beyond dispute; in fact, “some might argue that it is the worst vulnerability found (at least in terms of its potential impact) since commercial traffic began to flow on the Internet,” as at least one commentator suggested.

The fact that the flaw exists in OpenSSL, of course, is what’s made the topic particularly pertinent to those of us in the FOSS world.