Latest Breaking News

Erich Bloodaxe BSN

(14,733 posts)

66. The vulnerability is

Mon Apr 14, 2014, 08:13 AM

Apr 2014

apparently in the server software, not your own machine (unless you serve up websites or other servers from your machine, such as a database, for instance). As such, it doesn't really matter if your machine (the 'client') uses linux, windows, or whatever.

I'd change passwords on major sites first, especially your email password, since most other sites send your change requests to the email address on file. Then I'd change credit card and banking site passwords, then bills you pay online.

But let's face it, bugs like this reveal the flaw in simply having to sign in with accounts at so many different websites - if you're like me, you've got all sorts of passwords on accounts on websites you may have used exactly once in your life, to order something online, including sites you to which you never plan to return, but offered you no ability to delete your account, or to set them to 'disable all logins on account'.

Edit history

Please sign in to view edit histories.

Recommendations

0 members have recommended this reply (displayed in chronological order):

67 replies

= new reply since forum marked as read

Highlight:

NSA Said to Have Used Heartbleed Bug, Exposing Consumers [View all] MindMover Apr 2014 OP

Doesn't matter. ForgoTheConsequence Apr 2014 #1

Somehow has to do TDale313 Apr 2014 #3

I heard a rumor that he forgot his girlfriends birthday. ForgoTheConsequence Apr 2014 #5

His girlfriend the pole-dancer TDale313 Apr 2014 #6

Who needs a Bill of Rights if a whistleblower's girlfriend pole dances!? villager Apr 2014 #17

Debunked. Wrong. NSA didn't use it. uhnope Apr 2014 #59

A denial isn't a debunking. ForgoTheConsequence Apr 2014 #62

And if you can't trust christx30 Apr 2014 #64

Yeah.. sendero Apr 2014 #65

Lol. n/t ronnie624 Apr 2014 #67

Well, now there's a shocker. TDale313 Apr 2014 #2

This is, ironically, the downside to open source. eggplant Apr 2014 #23

Screwed either way, as RSA showed. Pholus Apr 2014 #25

touch�. eggplant Apr 2014 #45

Same with my Ubuntu distribution... PosterChild Apr 2014 #57

And there may well be more such unknown bugs out there too. nt bemildred Apr 2014 #4

Are. Not may well be. Are. AtheistCrusader Apr 2014 #18

Just trying to be diplomatic, I'm quite sure there are too. nt bemildred Apr 2014 #21

This is all Snowden's fault. Life was so much better when we were ignorant and trusting. rhett o rick Apr 2014 #7

And many of us are trying to figure out what passwords to change.. KoKo Apr 2014 #8

The vulnerability is Erich Bloodaxe BSN Apr 2014 #66

Heartbleed was probably created by the NSA... n/t 2banon Apr 2014 #9

It's a real shame the NSA isn't in the executive branch. Shemp Howard Apr 2014 #11

old news. everyone knows the NSA has been using that exploit since Nixon. frylock Apr 2014 #10

Libertarians .... MindMover Apr 2014 #13

Your Koch graphic OnyxCollie Apr 2014 #24

err umm uhh Ralph Nader or something! frylock Apr 2014 #31

+1 dreamnightwind Apr 2014 #39

Message auto-removed Name removed Apr 2014 #30

That would be a pretty good trick since SSL wasn't even invented yet totodeinhere Apr 2014 #14

why do you love Putin? frylock Apr 2014 #15

Wow. Wouldn't have thought that post TDale313 Apr 2014 #27

some days it's not even worth getting out of bed to post snark frylock Apr 2014 #32

I posed this was how the NSA had access to FB chats. joshcryer Apr 2014 #37

Interesting, I wonder if there is anything in the Snowden documents about this. arcane1 Apr 2014 #12

If the NSA's job is to protect Americans, Maedhros Apr 2014 #16

I am reminded of George Carlin's 'They don't give a fuck about *you*' bit. AtheistCrusader Apr 2014 #19

Ahh, I miss George .... MindMover Apr 2014 #20

Only jail time will safeinOhio Apr 2014 #22

Jail time for... PosterChild Apr 2014 #58

Some people belong in jail over this. joshcryer Apr 2014 #38

The next time someone handwrings about "Comrade Eddie's" truthtelling... Pholus Apr 2014 #26

why did Bloomberg use the word "critical" to describe the intel? grasswire Apr 2014 #28

The judgement of the "two people familiar with the matter." Pholus Apr 2014 #29

I fault the editor here. grasswire Apr 2014 #33

A good point! Pholus Apr 2014 #53

Comrade Eddie and Smearmaster Greenwald are at it again MannyGoldstein Apr 2014 #34

LOL... nt MindMover Apr 2014 #35

And a RACIST, too. OnyxCollie Apr 2014 #41

The NSA can not be said to protect the national interests. joshcryer Apr 2014 #36

When the NSA relies on zero day exploits Jesus Malverde Apr 2014 #40

NSA denies it OKNancy Apr 2014 #42

Honestly BlindTiresias Apr 2014 #44

Is this another "least untruthful" statement though... Pholus Apr 2014 #55

K & R !!! WillyT Apr 2014 #43

NSA put 100s of millions of people at risk to protect their own interests. They would happily slit pragmatic_dem Apr 2014 #46

The only source for this claim is apparently this very article, which cites itself: ucrdem Apr 2014 #47

Yes and I put NSA's denial on LBN ... MindMover Apr 2014 #48

Your posts are fine. I'm commenting on the article. ucrdem Apr 2014 #50

you can contact the writer directly grasswire Apr 2014 #51

Yes. Yes it does mean you heart the NSA. DisgustipatedinCA Apr 2014 #52

The ol' Friday news dump trick. blkmusclmachine Apr 2014 #49

EXACTLY ... nt MindMover Apr 2014 #54

As I suspected. But the new one is safe from the NSA ...sssssure it is. L0oniX Apr 2014 #56

Debunked. Wrong. NSA didn't use it. uhnope Apr 2014 #60

I had there denial in LBN 4 hrs after I had this post in LBN .... MindMover Apr 2014 #61

They denied it. ForgoTheConsequence Apr 2014 #63