Heartbleed!

Want to hang out and have a friendly, off-topic discussion with your fellow players and the staff? This is the place to do it.

Moderator: Elder Staff

Post Reply
User avatar
Holmes
Elf Recruit
Posts: 213
Joined: Fri Aug 23, 2013 3:22 pm

Heartbleed!

Post by Holmes » Tue Apr 08, 2014 10:12 am

So, probably the biggest vulnerability in the internet's history has just been publicly disclosed, and pretty much the entire internet is rushing to fix it. So, if you notice any sites behaving oddly today, it's probably because their engineering teams are drinking themselves to an early grave.

http://heartbleed.com/

https://www.mattslifebytes.com/?p=533

User avatar
Nauriel
Dwarf Recruit
Posts: 69
Joined: Sun Nov 17, 2013 8:36 pm

Re: Heartbleed!

Post by Nauriel » Tue Apr 08, 2014 12:45 pm

Wellllll eff.
"I just want delicious Greek abs." -Icarus

User avatar
Taurgalas
Master Ent
Posts: 706
Joined: Tue Jan 21, 2014 1:07 pm

Re: Heartbleed!

Post by Taurgalas » Tue Apr 08, 2014 12:52 pm

Eep! Here's to our valiant and brave, to those young men and women who gird themselves to protect us all and keep us safe. Here's to the Internet engineers!
[Petition:***] Why is there a pretty pink pony with doe eyes and a party-balloon cutie mark in the group?

*** orc player name edited out for his/her own protection.

User avatar
Nimrod
Game Coder
Posts: 5542
Joined: Tue Aug 20, 2013 12:51 pm

Re: Heartbleed!

Post by Nimrod » Tue Apr 08, 2014 3:37 pm

Bah! SSL Certificates are for pansies! :P

Gah... who'd have guessed that being on a windows system would ever be more secure than nix?
How lucky I am to have something that makes saying goodbye so hard.

stalinbulldog
Verified Member
Posts: 22
Joined: Thu Feb 27, 2014 12:36 pm

Re: Heartbleed!

Post by stalinbulldog » Tue Apr 08, 2014 8:28 pm

Just a brief note on heartbleed, the good news is that the patch for this vulnerability was released a year ago, the bad news is that linux distros are pretty lazy, so a bunch of the popular ones are pushing out patches for the issue now... It is, however, funtimes all around.

User avatar
Holmes
Elf Recruit
Posts: 213
Joined: Fri Aug 23, 2013 3:22 pm

Re: Heartbleed!

Post by Holmes » Tue Apr 08, 2014 9:12 pm

stalinbulldog wrote:Just a brief note on heartbleed, the good news is that the patch for this vulnerability was released a year ago, the bad news is that linux distros are pretty lazy, so a bunch of the popular ones are pushing out patches for the issue now... It is, however, funtimes all around.
Aw, c'mon, it's not about being lazy. It's purely a philosophy of not updating things unless it's necessary. Before this was revealed (in a really shitty way, I might add), there was no known reason to update.

User avatar
Octavius
Journeyman Architect
Posts: 1094
Joined: Tue Nov 05, 2013 1:33 pm
Location: East Coast, USA

Re: Heartbleed!

Post by Octavius » Wed Apr 09, 2014 7:40 am

Thanks for sharing, Holmes! I really appreciated it yesterday. :)

For the general community -

Recommended that you go change your passwords on websites, then again after they confirm it has been fixed.

Yahoo accounts were compromised. So far looks like other major sites (Google, Twitter, Facebook) might have missed this. Changing passwords is always a good idea, though.

User avatar
Octavius
Journeyman Architect
Posts: 1094
Joined: Tue Nov 05, 2013 1:33 pm
Location: East Coast, USA

Re: Heartbleed!

Post by Octavius » Thu Apr 10, 2014 6:27 am

For those curious, here's the status of the top 1000 sites on the internet and if they were affected or not.

https://github.com/musalbas/heartbleed- ... op1000.txt

Post Reply