Mr. Lowagie,
Thank you for your response. I believe I understand iText's position on this
matter. Just to make sure that I understand you correctly, iText utilizes the
OpenSSL library for encrypting and signing PDF documents on the client-side.
The Heartbleed vulnerability only relates to servers who are using the OpenSSL
library for decrypting SSL certificates on incoming requests. Since iText does
not encrypt or decrypt HTTPS traffic, the Heartbleed vulnerability is not an
issue within the iText library. Is this an accurate statement?
Chet Potvin | Sr. Software Engineer | Care Coordination and Analytics
Allscripts | 222 Merchandise Mart | Suite 2024 | Chicago, IL | 60654
773.632.1552 | P
888.446.2022 | F
chet.pot...@allscripts.com<mailto:chet.pot...@allscripts.com> |
www.allscripts.com<http://www.allscripts.com/>
------------------------------------------------------------------------------
Learn Graph Databases - Download FREE O'Reilly Book
"Graph Databases" is the definitive new guide to graph databases and their
applications. Written by three acclaimed leaders in the field,
this first edition is now available. Download your free book today!
http://p.sf.net/sfu/NeoTech
_______________________________________________
iText-questions mailing list
iText-questions@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/itext-questions
iText(R) is a registered trademark of 1T3XT BVBA.
Many questions posted to this list can (and will) be answered with a reference
to the iText book: http://www.itextpdf.com/book/
Please check the keywords list before you ask for examples:
http://itextpdf.com/themes/keywords.php
