Post a reply

Bug reports without an attached log file are usually useless.

Username

Subject

Message body

Font colour:

Font size:

Options

Disable BBCode in this post

Notify me when a reply is posted (registered users only)

Add an Attachment

If you do not want to add an Attachment to your Post, please leave the Fields blank.

Filename

(maximum 10 MB; please compress large files; only common media, archive, text and programming file formats are allowed)

File Comment

Options

Private file (available to author and site moderators only)

Topic review

2014-04-11

This bug is tracked here:
https://winscp.net/tracker/1151

OpenSSL is used with FTP over TLS/SSL only. Majority (about 98%) of WinSCP users use SSH (SFTP/SCP) and plain FTP only and are NOT affected!

2014-04-11 05:45

I use the SFTP client and have heard about the OpenSSL vulnerability that could cause a breach. Is this something I should be concerned about while using the client?

https://www.helpnetsecurity.com/2014/04/09/heartbleed-openssl-vulnerability-a-technical-remediation/

Thank you!

Steve Pucelik