Jump to content

IGNORED

Heartbleed vulnerability


FastWoman

Recommended Posts

Hi all,

Today I've been checking websites where I have logins for their vulnerability to the heartbleed bug. Most sites have been checking out alright. However, classiczcars.com apparently has this vulnerability. I don't yet know the full implications of this security threat or how the security threat would be corrected, but I thought I should make my fellow Z enthusiasts aware of the problem.

Peace,

Sarah

Link to comment
Share on other sites

My sister works for IBM and sent the following about Heartbleed:

1) Before you log on any of your banking accounts, first check the url at this site to see if the site's server has been fixed or is unaffected. - Test your server for Heartbleed (CVE-2014-0160)

I can tell you that yesterday many sites were not fixed and today they are! Otherwise, when you log in, your login information could be compromised. Once this was announced, hackers everywhere were on the prowl. Most of the major sites have been fixed (paypal, amazon, Chase, google, etc)

2) Then change your password on all secure sites, including your email. This "programming error" has been out there for 2 years so even if your site is now safe, there is no way to even know if information was taken in the past.

Best way to have a cryptic pw that you can remember is to come up with a phrase such as ...

I graduated from High School in 79 = IgfHSi79. In the past, I used a word such as baseball = bas3ba11 but there are programs out there to figure words with # substitutions now.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...

Important Information

By using this site, you agree to our Privacy Policy and Guidelines. We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.