Re: My fellow (Debian) Linux users ...
On Sat, 12 Apr 2014 23:20:40 +0100
Lisi Reisz <firstname.lastname@example.org> wrote:
> On Saturday 12 April 2014 23:11:35 Henrique de Moraes Holschuh wrote:
> > There IS a reason why it was given a "Severity: Apocaliptic" label
> > by the best in the field:
> So what action do readers recommend? Change every single password, or
> just passwords to sensitive sites/information?
It's much worse than this. Change every password, every certificate and
every key pair just to be sure.
Next, test services you're using for Heartbleed vulnerability, and if
they're still vulnerable - stop using them. They were given enough time
to patch the bug, and if they haven't did it until now - they won't do
it in the foreseeable future.
Next, test network equipment near you for Heartbleed vulnerability.
Update their firmware if possible, dump this piece of equipment if not.