Been waiting some 12 hours before posting this just to see if it turns up in other news services, it has now in Europe, so here goes:
A civilisation built upon software isn't safe
Bit of a worry, me thinks !
software isn't safe
-
- cheese lizard
- Posts: 6241
- Joined: 16 Jan 2010, 00:14
- Location: Sydney Australia
software isn't safe
Cheers, Claude.
-
- gamma jay
- Posts: 25455
- Joined: 17 Mar 2010, 17:33
- Location: Cape Town
Re: software isn't safe
That threat has always been around...but what can we ordinary folk do but be vigilant and careful with our credit cards and passwords. It's up to the banks to ensure their own security is in place...I cannot control that! If someone would rather be completely paranoid, take your salary/pension and put it under your mattress, (me thinks), but even THAT has risks.
Regards,
Rudi
If your absence does not affect them, your presence didn't matter.
Rudi
If your absence does not affect them, your presence didn't matter.
-
- Administrator
- Posts: 12604
- Joined: 16 Jan 2010, 15:49
- Location: London, Europe
Re: software isn't safe
The really scary thing about the Heartbleed bug is that patching the SSL software onlty prevents future breaches. Any site running OpenSSL could have already been breached, and that includes getting copies of their security certificates - which could be used for scams in the future. Really they should all revoke their certificates and buy new ones, and they should also change every password - but most are just installing the patch.
StuartR
-
- PlutoniumLounger
- Posts: 15615
- Joined: 24 Jan 2010, 23:23
- Location: brings.slot.perky
Re: software isn't safe
Only if you are due for a tax refund:Claude wrote:Bit of a worry, me thinks !
Canada Revenue Agency shuts down online services over ‘Heartbleed’ security bug
There's nothing heavier than an empty water bottle
-
- Administrator
- Posts: 12604
- Joined: 16 Jan 2010, 15:49
- Location: London, Europe
Re: software isn't safe
I have now changed by Google password, because they have already updated their security certificate.
I will be updating all my other online passwords as I see that the sites have new certificates.
I recommend everyone else does the same
I will be updating all my other online passwords as I see that the sites have new certificates.
I recommend everyone else does the same
StuartR
-
- Administrator
- Posts: 78474
- Joined: 16 Jan 2010, 00:14
- Status: Microsoft MVP
- Location: Wageningen, The Netherlands
Re: software isn't safe
I also turned on two-step authentication for my Google and Microsoft accounts. When I log into the account, I have to enter a verification code sent to my mobile phone.
Best wishes,
Hans
Hans
-
- Administrator
- Posts: 12604
- Joined: 16 Jan 2010, 15:49
- Location: London, Europe
Re: software isn't safe
I am reluctant to do that.
A few months ago my brother had a break-in - they stole his PC and his mobile phone and he was locked out of his accounts until he could get a replacement SIM and phone.
Today I went round to my Dad's house and left my phone at home by accident, I logged in to his PC to check my gmail.
Both of these scenarios are problems with 2 factor authentication.
A few months ago my brother had a break-in - they stole his PC and his mobile phone and he was locked out of his accounts until he could get a replacement SIM and phone.
Today I went round to my Dad's house and left my phone at home by accident, I logged in to his PC to check my gmail.
Both of these scenarios are problems with 2 factor authentication.
StuartR
-
- BronzeLounger
- Posts: 1598
- Joined: 26 Jan 2010, 20:28
- Location: Ottawa ON
Re: software isn't safe
Good advice, but how can I tell if a site has new security certificates?StuartR wrote:I have now changed by Google password, because they have already updated their security certificate.
I will be updating all my other online passwords as I see that the sites have new certificates.
I recommend everyone else does the same
Regards,
Paul
The pessimist complains about the wind. The optimist expects it to change. The realist adjusts his sails.
Paul
-
- cheese lizard
- Posts: 6241
- Joined: 16 Jan 2010, 00:14
- Location: Sydney Australia
Re: software isn't safe
You can check if a secure web site has a problem via this Heartbleed test site
Cheers, Claude.
-
- BronzeLounger
- Posts: 1598
- Joined: 26 Jan 2010, 20:28
- Location: Ottawa ON
Re: software isn't safe
Thanks, Claude. Good find. It gave me reassurances about some sites, but others, not so much. I think I've worked out how to check site security certificates in Firefox. I find it funny that while Google issues its own certs, it has not updated its Gmail site certificate. The issue date is March 12.
Regards,
Paul
The pessimist complains about the wind. The optimist expects it to change. The realist adjusts his sails.
Paul
-
- Administrator
- Posts: 12604
- Joined: 16 Jan 2010, 15:49
- Location: London, Europe
Re: software isn't safe
There is a very useful page for checking the status of some major web sites at http://mashable.com/2014/04/09/heartble ... -affected/
StuartR
-
- UraniumLounger
- Posts: 9284
- Joined: 13 Feb 2010, 01:27
- Location: Deep in the Heart of Texas
Re: software isn't safe
Could someone who knows about Heartbleed please tell me what this means?
I went to the Heartbleed Test Site and entered the url and got this screen; but I don't know what it means.
I went to the Heartbleed Test Site and entered the url and got this screen; but I don't know what it means.
You do not have the required permissions to view the files attached to this post.
Bob's yer Uncle
Dell Intel Core i5 Laptop, 3570K,1.60 GHz, 8 GB RAM, Windows 11 64-bit, LibreOffice,and other bits and bobs
(1/2)(1+√5) |
-
- Administrator
- Posts: 78474
- Joined: 16 Jan 2010, 00:14
- Status: Microsoft MVP
- Location: Wageningen, The Netherlands
Re: software isn't safe
It's probably just a slight discrepancy in the way the certificate has been assigned, not a security problem. If you ticjk the check box "Advanced", the rest turns out to be OK.
(Your dachshund looks different today! )
(Your dachshund looks different today! )
Best wishes,
Hans
Hans
-
- UraniumLounger
- Posts: 9284
- Joined: 13 Feb 2010, 01:27
- Location: Deep in the Heart of Texas
Re: software isn't safe
That was an accidental selfie taken last weekend while I was trying to make a video with my iPhone. I thought it might scare away all malware.HansV wrote: . . .
(Your dachshund looks different today! )
Bob's yer Uncle
Dell Intel Core i5 Laptop, 3570K,1.60 GHz, 8 GB RAM, Windows 11 64-bit, LibreOffice,and other bits and bobs
(1/2)(1+√5) |
-
- gamma jay
- Posts: 25455
- Joined: 17 Mar 2010, 17:33
- Location: Cape Town
Re: software isn't safe
The accidental selfie turned out quite well
Regards,
Rudi
If your absence does not affect them, your presence didn't matter.
Rudi
If your absence does not affect them, your presence didn't matter.