<div dir="ltr">Yep some really big sites are still wide open, many returning plain text usernames and passwords etc.<div><br></div><div>You can check your own site @ <a href="http://filippo.io/Heartbleed/">http://filippo.io/Heartbleed/</a></div>
<div><br></div><div>Cheers</div><div><br></div><div>Kurtis</div><div><br></div></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Tue, Apr 8, 2014 at 1:28 PM, Jason Irwin <span dir="ltr"><<a href="mailto:jasonirwin73@gmail.com" target="_blank">jasonirwin73@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div class="">On 08/04/14 12:58, Paul wrote:<br>
> I think you may find this article very interesting. It looks like all<br>
> SSL secured connections have been vulnerable for some time.<br>
> <a href="http://www.bbc.co.uk/news/technology-26935905" target="_blank">http://www.bbc.co.uk/news/technology-26935905</a><br>
</div>The bug seems to have existed for about 2 years, has been patched in<br>
around 24 hours.<br>
<br>
The code is walked through here:<br>
<a href="http://blog.existentialize.com/diagnosis-of-the-openssl-heartbleed-bug.html" target="_blank">http://blog.existentialize.com/diagnosis-of-the-openssl-heartbleed-bug.html</a><br>
<br>
After you've updated, the advice seems to be to get new x509 certs and<br>
change any passwords that might have been exposed.<br>
<br>
Going to be a long day/week for some people....<br>
<span class="HOEnZb"><font color="#888888"><br>
--<br>
╔═════════════╦══════════════════════════════════════════╗<br>
║ Jason Irwin ║ OpenPGP (GPG/PGP) Public Key: 0xD0C592B1 ║<br>
║ ║ Import from hkp://<a href="http://subkeys.pgp.net" target="_blank">subkeys.pgp.net</a> ║<br>
╚═════════════╩══════════════════════════════════════════╝<br>
</font></span><div class="HOEnZb"><div class="h5"><br>
_______________________________________________<br>
Nottingham mailing list<br>
<a href="mailto:Nottingham@mailman.lug.org.uk">Nottingham@mailman.lug.org.uk</a><br>
<a href="https://mailman.lug.org.uk/mailman/listinfo/nottingham" target="_blank">https://mailman.lug.org.uk/mailman/listinfo/nottingham</a></div></div></blockquote></div><br></div>