[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: My fellow (Debian) Linux users ...

 Hi.

On Sat, 12 Apr 2014 23:20:40 +0100
Lisi Reisz <lisi.reisz@gmail.com> wrote:

> On Saturday 12 April 2014 23:11:35 Henrique de Moraes Holschuh wrote:
> > There IS a reason why it was given a "Severity: Apocaliptic" label
> > by the best in the field:
> 
> So what action do readers recommend?  Change every single password, or 
> just passwords to sensitive sites/information?

It's much worse than this. Change every password, every certificate and
every key pair just to be sure.

Next, test services you're using for Heartbleed vulnerability, and if
they're still vulnerable - stop using them. They were given enough time
to patch the bug, and if they haven't did it until now - they won't do
it in the foreseeable future.

Next, test network equipment near you for Heartbleed vulnerability.
Update their firmware if possible, dump this piece of equipment if not.

Reco
Reply to: