linkHeartbleed.
What the fucking hell is that? warning: technical talk
A vulnerability in OpenSSL was known to be the "greatest bug evar".
Why would I care? link techy guys: How does it work? link Is Fanpop vulnerable? Ideekay if the F4 uses port 443 for OpenSSL.
I ran some tests to no avail.
Am I vulnerable? linkYou may be susceptible, directly or indirectly.
How do I protect myself? PFS (Perfect Forward Secrecy) may help, but it's sort of like legendarily rare.
IDS (such as Snort) may be trained to detect.
Proxies? My god, no.
Honeypots? Useful if you want to look at assholes trying to exploit...
continue reading...