bodhi

So, Heartbleed. But it's not enough just to generate new certificates, right? You actually need to get the CA to revoke the old one, otherwise the (possibly stolen) original private key is still valid?

Or have I lost it?