[rabbitmq-discuss] Heartbleed SSL vulnerability does not affect RabbitMQ

Simon MacMullen simon at rabbitmq.com
Tue Apr 8 17:32:36 BST 2014

Just in case people are worrying about this:

Erlang uses OpenSSL for crypto functions but does *not* use OpenSSL's 
implementation of the SSL / TLS protocol. So even if you have a bad 
version of OpenSSL linked to Erlang / RabbitMQ you are still safe.

See http://erlang.org/pipermail/erlang-questions/2014-April/078538.html 
for a bit more detail.

Cheers, Simon

Simon MacMullen
RabbitMQ, Pivotal

More information about the rabbitmq-discuss mailing list