OpenSSL leaks server-Keys / The Heartbleed Bug

itpp2012 nginx-forum at
Mon Apr 14 19:03:54 UTC 2014

Fyi. if you are running a ssl tunnel like stunnel with openssl 0.9.x, this
attack is logged as "SSL3_GET_RECORD:wrong version number" as opposed to no
nginx/openssl logging.

If you have logging going back 2 years and you are seeing these log entries
now, you may be able to detect attacks from before 7-4-2014.

Here we have many stunnels with openssl 0.9.x and found the first attacks
at: 2014.04.08 22:19:14 (CET) in more then 2 years of logging.

Posted at Nginx Forum:,249102,249288#msg-249288

More information about the nginx mailing list