Pretty much everyone running Apache for SSL termination was vulnerable. The difference was that I had OpenSSL updated about 15 minutes after the vulnerability was publically disclosed, which was...