Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I'm sure this bug was discovered at least 1 month ago. I would not trust my keys are safe even if using cloudflare.


From the related blog post: http://blog.cloudflare.com/answering-the-critical-question-c...

"While we believe it is unlikely that private key data was exposed, we are proceeding with an abundance of caution. We’ve begun the process of reissuing and revoking the keys CloudFlare manages on behalf of our customers. In order to ensure that we don’t overburden the certificate authority resources, we are staging this process. We expect that it will be complete by early next week."


If it was a month ago that was a very long period of time to sit on something so devastating.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: