This article reports on the German developer who introduced the vulnerability into OpenSSL two years ago. A trivial coding oversight that has massive potential ramifications.