Threat Post

OpenSSL Patches Critical Certificate Validation Vulnerability

A high-severity bug in OpenSSL was disclosed today, and it affects only organizations that installed an update released in June, and allows anyone with an untrusted TLS certificate to become a CA.
Ars Technica

OpenSSL Certificate help

I'm trying to generate a certificate (using the openssl command line tool) that can't actually DO anything - can't sign, can't encrypt. Is this possible? It seems like the purpose of the certificate ...
Daily Mail

Heartbleed was an accident: Developer confesses to causing coding error and admits its effect is 'clearly severe'

German developer Dr Robin Seggelmann admitted he wrote the code It was then reviewed by other members and added to OpenSSL software This addition led to the Heartbleed flaw in the open-source program ...
Linux Journal

An Introduction to OpenSSL Programming, Part I of II

The quickest and easiest way to secure a TCP-based network application is with SSL. If you're working in C, your best choice is probably to use OpenSSL (http://www ...