1. 8
  1.  

  2. 2

    Irony…

    Secure Connection Failed

    An error occurred during a connection to www.dwheeler.com. Peer using unsupported version of security protocol. Error code: SSL_ERROR_UNSUPPORTED_VERSION

    1. 2

      Irony…

      Secure Connection Failed
      
      An error occurred during a connection to www.dwheeler.com. Peer using unsupported version of security protocol. Error code: SSL_ERROR_UNSUPPORTED_VERSION
      

      Yeah I forwarded that to him. I also pointed out that people whose security isn’t good enough to mitigate that problem have to reinstall their OS regularly and restore backups thanks to malware. They’ll do that many times in their life. But, how often will they get a chance to read the great content on his website? They might have some toasted systems but write a lot more secure FOSS that’s immune to Heartbleed and a bunch of other stuff. I say the risk is worth it given the benefits his write-ups bring. ;)

    2. 1

      Although Heartbleed is old news, this response by David A. Wheeler is worth reading if you want an exhaustive treatment of testing options on your software. He regularly checks whether the testing strategy or analysis tool he’s talking about would’ve caught this error as the tie-in to the title topic. He also looks into safe languages and contracts.

      The footnote at the bottom shows this is part of a larger series he’s doing called Learning from Disaster:

      https://www.dwheeler.com/essays/learning-from-disaster.html