heartbleed bug-is CollarMe affected?

heartbleed bug-is CollarMe affected? (Full Version)

All Forums >> [Community Discussions] >> Health and Safety

Message

maidtessa -> heartbleed bug-is CollarMe affected? (4/12/2014 10:37:17 AM)
Don't know where else to put this. Does Collarme use the technologies affected by heartbleed, in which case has the site been fixed yet, so our data is secured? 66% of the web uses it apprently, so seems a reasonable assumption.

DoYouLikePain -> RE: heartbleed bug-is CollarMe affected? (4/12/2014 2:48:09 PM)
Since Collarme hasn't replied directly to you, and since they don't enable HTTPS:/ connections, it would seem highly likely that communications here are wide-open to the Heartbleed bug. Or, that'd be prudent to presume until CollarMe offically announces to all of us that it has fixed the bug.

maidtessa -> RE: heartbleed bug-is CollarMe affected? (4/13/2014 3:46:23 PM)
Think I may be prudent and check my profile and/or messages don't contain anything identifiable...

LookieNoNookie -> RE: heartbleed bug-is CollarMe affected? (4/26/2014 7:00:12 PM)
quote: ORIGINAL: maidtessa Don't know where else to put this. Does Collarme use the technologies affected by heartbleed, in which case has the site been fixed yet, so our data is secured? 66% of the web uses it apprently, so seems a reasonable assumption. Do you have credit card info here? (No). Do you have common passwords here amongst other sites? (Hopefully not). Asked/answered.

bowedB4Women -> RE: heartbleed bug-is CollarMe affected? (4/26/2014 7:33:13 PM)
A word worse then heart bleed: plaintxt.

igor2003 -> RE: heartbleed bug-is CollarMe affected? (4/26/2014 8:45:17 PM)
Norton has a web page you can go to and enter a URL to see if it is vulnerable. http://safeweb.norton.com/heartbleed

poise -> RE: heartbleed bug-is CollarMe affected? (4/27/2014 12:53:16 PM)
quote: ORIGINAL: igor2003 Norton has a web page you can go to and enter a URL to see if it is vulnerable. http://safeweb.norton.com/heartbleed I thought I had read a few posts here over the years that some virus software determines Collarme to be unsafe, simply because of the content and not for the vulnerability of the site. The good news is, I have also never read anywhere on this site where someone got a virus by logging in. [:D] I think what everyone needs to watch out for are the links they might come across in some of the profiles out there.

NiceButMeanGirl -> RE: heartbleed bug-is CollarMe affected? (4/27/2014 2:00:06 PM)
What is the heartbleed bug?

shallowdeep -> RE: heartbleed bug-is CollarMe affected? (5/1/2014 12:47:20 AM)
quote: ORIGINAL: maidtessa Does Collarme use the technologies affected by heartbleed… No. Collarme does not provide encrypted connections and therefore makes no use of OpenSSL. quote: …in which case has the site been fixed yet, so our data is secured? Since OpenSSL isn’t used, the server would not have been vulnerable to leaking login credentials or other sensitive data from memory to someone making malicious requests and no fix for Heartbleed was required. That said, it’s worth noting that communication with the site is not secured with any form of encryption, OpenSSL-based or otherwise, so you should only access the site from networks you trust completely if you are worried about data security, as the connection is susceptible to eavesdropping and man-in-the-middle attacks. quote: ORIGINAL: NiceButMeanGirl What is the heartbleed bug? It is a serious bug that affected the OpenSSL software used by many websites and other online services to provide secure, encrypted connections. See: http://heartbleed.com/ or, for a simple explanation of how the bug works, http://xkcd.com/1354/

Page: [1]

Collarchat.com © 2024

Terms of Service

5.493164E-02