bug in openSSL lets people hijack accounts and steal information en masse

[lolz??]

Announcing this bug just makes it worse. Someone mentioned that this bug has been present for quiet a while now.

better companies know about it so they can patch it then if they didn't and data was being stolen secretely

[Ad Bot]

[Lugnut]

Announcing this bug just makes it worse. Someone mentioned that this bug has been present for quiet a while now.

No, it means stuff gets fixed and people can stop being vulnerable.

How else are they supposed to handle it? Remain quiet so the bad guys don't figure it out? Hahahahahhahaha you don't get how this works, do you?
Bad guys find bugs, then the good guys find bugs, spill the beans, and people get fixed. In the mean time, the bad guys have you by the balls.

[GhostOfBetaTapes]

64,000 bytes of data*

so much for trusting the media, then.

[Lugnut]

so much for trusting the media, then.

hahahahhahahahahhahahhahahahahahahaahahaha
You expect them to get it right? Get it right from the loving source: http://heartbleed.com

[Blockzillahead]

No, it means stuff gets fixed and people can stop being vulnerable.

How else are they supposed to handle it? Remain quiet so the bad guys don't figure it out? Hahahahahhahaha you don't get how this works, do you?
Bad guys find bugs, then the good guys find bugs, spill the beans, and people get fixed. In the mean time, the bad guys have you by the balls.

I just thought they could notify the people using OpenSSL through their system that there is a bug instead of letting more bad guys become aware of it and take advantage quickly before companies find the time to react.

[Lugnut]

I just thought they could notify the people using OpenSSL through their system that there is a bug instead of letting more bad guys become aware of it and take advantage quickly before companies find the time to react.

Not a bad idea, I'll give you that. Unfortunately that kind of system doesn't exist.

[Gatysh]

So how did it take that long to notice said bug?

[CharlesSpeaking]

they're isn't

wh

[Rockinboy2000]

just when i thought i didnt have to be paranoid anymore

gg

[Lugnut]

So how did it take that long to notice said bug?

because it's a subtle bug, and you can't automate bug finding

just when i thought i didnt have to be paranoid anymore

gg

why would you ever think that

[Candy Apple]

just when i thought i didnt have to be paranoid anymore

gg

dude im literally convinced there are cameras everywhere in my house and im being tracked by the government for having the name muslim before ohgod

[Rockinboy2000]

why would you ever think that

now that i think about it im dumb for thinking that because this has been a thing for awhile now so

[.:FancyPants:.]

okay what do i click to fix this (update to 1.0.1g of OpenSSL is the solution?)

that heartbleed website has a link to what is just some text to read and no actual update, and rather than be an idiot and click a link somewhere wrong i'm feeling like a link from lugnut etc. in this thread would be more trustable than a google search.

[Lugnut]

okay what do i click to fix this (update to 1.0.1g of OpenSSL is the solution?)

that heartbleed website has a link to what is just some text to read and no actual update, and rather than be an idiot and click a link somewhere wrong i'm feeling like a link from lugnut etc. in this thread would be more trustable than a google search.

are you running any servers? Like webservers?

[.:FancyPants:.]

are you running any servers? Like webservers?

neither, though i'm unsure of how that question applies; from the way it's being described, it sounds like only information is jeopardized here?