Page 1 of 2 12 LastLast
Results 1 to 10 of 17

Thread: How the Heartbleed bug affects users

  1. #1
    Join Date
    Oct 2009
    Beans
    Hidden!
    Distro
    Ubuntu 12.04 Precise Pangolin

    How the Heartbleed bug affects users

    There is a bunch of info regarding this bug over here: http://heartbleed.com/ but it is mostly geared to server administrators.
    This explanation is more suited to users: http://www.vox.com/2014/4/8/5593654/...romise-privacy

    As far as users are concerned, there isn't much they can do except check with any sites they use and see if they have been patched.

    If they have been patched, change your passwords. I would even go so far as to change passwords for sites that say they are unaffected, just in case.

    There are some resources to help with that including a scanner from LastPass: https://lastpass.com/heartbleed/

    I also found a small list of commonly used sites that said if they were affected or not. It can be found here:
    http://mashable.com/2014/04/09/heart...ites-affected/

    Hope this helps.
    Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide

    Tomorrow's an illusion and yesterday's a dream, today is a solution...

  2. #2
    Join Date
    Feb 2013
    Beans
    665
    Distro
    Ubuntu

    Re: How the Heartbleed bug affects users

    +1
    Quote Originally Posted by CharlesA View Post
    There is a bunch of info regarding this bug over here: http://heartbleed.com/ but it is mostly geared to server administrators.
    This explanation is more suited to users: http://www.vox.com/2014/4/8/5593654/...romise-privacy

    As far as users are concerned, there isn't much they can do except check with any sites they use and see if they have been patched.

    If they have been patched, change your passwords. I would even go so far as to change passwords for sites that say they are unaffected, just in case.

    There are some resources to help with that including a scanner from LastPass: https://lastpass.com/heartbleed/

    I also found a small list of commonly used sites that said if they were affected or not. It can be found here:
    http://mashable.com/2014/04/09/heart...ites-affected/

    Hope this helps.
    Thanks for this informed information. Here's another site for end users to check (scan) sites they normally visit, or here
    Last edited by pfeiffep; April 10th, 2014 at 10:01 PM. Reason: add info
    HP | Intel iCore 7 3.2Ghz | 12 Gb mem | SSD Win7 | HDD Trusty
    Dell laptop | Intel iCore 3 2.1Ghz | 4 Gb mem | Win 7 + Trusty
    Regards, Pete

  3. #3
    Join Date
    Feb 2013
    Beans
    665
    Distro
    Ubuntu

    Re: How the Heartbleed bug affects users

    Here's a nice slide show summarizing Heartbleed
    HP | Intel iCore 7 3.2Ghz | 12 Gb mem | SSD Win7 | HDD Trusty
    Dell laptop | Intel iCore 3 2.1Ghz | 4 Gb mem | Win 7 + Trusty
    Regards, Pete

  4. #4
    Join Date
    Oct 2009
    Beans
    Hidden!
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: How the Heartbleed bug affects users

    Quote Originally Posted by pfeiffep View Post
    Here's a nice slide show summarizing Heartbleed
    Good slideshow.
    Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide

    Tomorrow's an illusion and yesterday's a dream, today is a solution...

  5. #5
    Join Date
    Jun 2009
    Location
    0:0:0:0:0:0:0:1
    Beans
    4,386
    Distro
    Xubuntu 13.04 Raring Ringtail

    Re: How the Heartbleed bug affects users

    how can i check for myself to see if a site is affected? (IE attempt to use this exploit to see if they are affected)
    Laptop: ASUS A54C-NB91 (Storage: WD3200BEKT + MKNSSDCR60GB-DX); Desktop: Custom Build - Images included; rPi Server
    Putting your Networked Printer's scanner software to shame PHP Scanner Server
    I frequently edit my post when I have the last post

  6. #6
    Join Date
    Oct 2009
    Beans
    Hidden!
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: How the Heartbleed bug affects users

    Quote Originally Posted by pqwoerituytrueiwoq View Post
    how can i check for myself to see if a site is affected? (IE attempt to use this exploit to see if they are affected)
    Use the scanner lastpass has up, but keep in mind nothing is 100%.
    Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide

    Tomorrow's an illusion and yesterday's a dream, today is a solution...

  7. #7
    Join Date
    Apr 2014
    Beans
    3

    Re: How the Heartbleed bug affects users

    thx for the help.

  8. #8
    Join Date
    Dec 2007
    Location
    green bay, wi
    Beans
    2,203
    Distro
    Lubuntu 14.04 Trusty Tahr

    Lightbulb ref heartbleed bug here is an SSL Server Test

    here is the link

    https://www.ssllabs.com/ssltest/

    please know it might take a few minutes

    http://ubuntuforms.org sever got an A-
    quote:He that would live in peace & at ease, Must not speak all he knows,nor judge all he sees.'

  9. #9
    Join Date
    Nov 2008
    Location
    Storybrooke
    Beans
    Hidden!
    Distro
    Ubuntu Development Release

    Re: How the Heartbleed bug affects users

    Merged.
    Ubuntu Forums Moderation Staff
    Don't waste your energy trying to change opinions ... Do your thing, and don't care if they like it.

  10. #10
    Join Date
    Jun 2005
    Location
    The Front 9
    Beans
    Hidden!
    Distro
    Ubuntu Development Release

    Re: How the Heartbleed bug affects users

    This was todays(4-14-2014) check.
    Code:
    Site: ubuntuforums.org
    Server software: Apache/2.2.22 (Ubuntu)
    Was vulnerable: Possibly (known use OpenSSL, but might be using a safe version)
    SSL Certificate: Now Safe (created 6 days ago at Apr 8 14:28:06 2014 GMT)
    Assessment: Change your password on this site if your last password change was more than 6 days ago
    So has everybody changed there passwords?
    I know that you believe you understand what you think I said, but I'm not sure you realize that what you heard is not what I meant.

Page 1 of 2 12 LastLast

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •