Currently there is a security bug in the openssl library.
It should be carried out an update as soon as possible for services using SSL.
You can check on the page http://filippo.io/Heartbleed/ whether your server is affected
After the update, all services that use SSL/TLS must be restarted. (Apache, postfix, ...)
http://heartbleed.com/
http://www.debian.org/security/2014/dsa-2896
Such a security vulnerability is a crazy thing... Imagine that this thing is here since ~ 2 years...
My Server is not affected from this.
But iMSCP use this bugged version op openssl? Which steps need to be made?
Thanks in advance.
Andy.
Ok cool.
QuoteThe oldstable distribution (squeeze) is not affected by this vulnerability.
I use squeeze so no changes for me 
Thanks
Wait, this bug is reported in the mainstream newspapers, radios etc and some admins does not know about this issue? 
@andy-lu you just need to update your openssl packages and restart the affected services. Because not all services will be restarted automatically after update, you have to find and restart them manually. I think here it's also ok to restart the complete server (much easier and safer) 
