1. Welcome to TalkBass, the Premier Bass Player Community and Information Source. Register a 100% Free Account to post and unlock tons of features.

HeartBleed Virus.......

Discussion in 'Off Topic [BG]' started by ZenG, Apr 10, 2014.

  1. ZenG

    ZenG

    Dec 13, 2013
    Should I be concerned about it?
     
  2. SunnBass

    SunnBass All these blankets saved my life. Supporting Member

    Aug 31, 2010
    Columbia, Mo
  3. 96tbird

    96tbird This Indian movie is really boring man. Supporting Member

    Dec 13, 2010
    Manitoba, Canada
    I added the chrome browser extension that gives a pop up every time it senses vulnerability on a site visited. It was popping all day today. :eek:
     
  4. placedesjardins

    placedesjardins

    May 7, 2012
    Computer virus? Did it come up in a anti-virus program catch?
     
  5. It's a backdoor into supposedly secure servers that store passwords and creditcard details. Hackers can waltz into say, TB, steal your login and email, and leave no trace of being there.

    Apparently the backdoor code was inserted by the NSA, cheers.
     
  6. bass_case

    bass_case Maintain low tones! Supporting Member

    Oct 23, 2013
    Miami, FL
    It's not a virus. It's a server side bug that has to be fixed on the server.
     
  7. DerHoggz

    DerHoggz I like cats :| Banned

    Feb 13, 2009
    Western Pennsylvania
    I haven't read that it was inserted by the NSA, but they certainly didn't mind exploiting it.
     
  8. Codger

    Codger Supporting Member

    Apr 13, 2008
    No. It is a buffer overrun type of vulnerability in a version or versions of OpenSSL that allows the attacker to obtain only 64 kbytes of data. The data could contain anything depending on what is there. It could be random data, old data, encrypted passwords, or even the server's certificate - at least as I understand Steve Gibson's explanation on Security Now.

    Always willing to learn,

    -- bradley.
     
  9. bluesdogblues

    bluesdogblues

    Nov 13, 2007
    oops sorry, I didn't found this thread when I was searching... so I post another thread about it...
    but now I do.. so I'll inform you here that our beloved talk bass.com categorized as "F" according to this site.. https://www.ssllabs.com/ssltest/
    be careful

    [​IMG]
     
  10. bmc

    bmc

    Nov 15, 2003
    Switzerland



Share This Page