Altcoins still being released that are vulnerable to OpenSSL exploit Heartbleed.

[vk3ukf]

Q, I am starting some initial research into how many altcoins people are using that have
not been patched for the Heartbleed OpenSSL exploit.
What version of OpenSSL is your wallet client.
If it is between 1.0.1 to 1.0.1f you are vulnerable.

How can you tell?

With your wallet open, click Help an the top menu.
Then click Debug window.

You should now see some information, including the version of OpenSSL used, e.g.
OpenSSL 1.0.1g 7 Apr 2014.

These versions are not safe.

OpenSSL 1.0.1a
OpenSSL 1.0.1b
OpenSSL 1.0.1c
OpenSSL 1.0.1d
OpenSSL 1.0.1e
OpenSSL 1.0.1f

If you remain complacent,
any loss you experience from a hack will be whose fault?

Can we create a list of those that are in need of an update and are currently not as safe as they could be?

e.g.

SAFE:
BITCOIN
LITECOIN
DOGECOIN
BLACKCOIN

--------------------------

UNSAFE:
EMUCOIN
BUMBACOIN
POTCOIN

etc.

Altcoins are still being released that use the vulnerable OpenSSL versions 1.0.1 a to f.

[Rofo]

https://bitcointalk.org/index.php?topic=563790.0

[vk3ukf]

Thanks rofo, just what I was looking for but could not find. I think this needs to go a bit further and ban them from the forum until they comply.

[Rofo]

No problemo, that thread is no longer updated as far as I'm aware though.

[vk3ukf]

Now, I have another question aimed at some more knowledgeable persons.

If a POOL is running their pool wallet on their local network and it is using RPC,

is not the entire pools stash at risk to any crypto thieves?