Heartbleed bug

[Mikelab6]

Are Orbx or FlightsimStore Websites affected by Heartbleed bug ?

Do we need to change our passwords ?

For information about the bug you can go at this url

http://www.cnet.com/news/how-to-protect-yourself-from-the-heartbleed-bug/

Thanks !

[Mikelab6]

Deleted this second post and edited the first one with url link for more information...

[John Venema]

No Orbx sites contain customer credit card information, since Orbx does not deal with any customer transactions. I can't speak for FSS though, you'd have to contact them.

[Mikelab6]

Thanks John !

You are very fast. I was typing on my first post (editing) and when done, your answer was already posted.

Thanks again !!

[Adrian Lehmann (FSS)]

The FlightSim Store has not been affected by the Heartbleed vulnerability. You can check this using the tester at the following website:

http://filippo.io/Heartbleed/#www.flightsimstore.com

[Mikelab6]

Thanks Adrian ! Wow great service !

[flyingleaf]

orbx rocks. Thanks y'all

[RLSinCO]

All,

Please keep the following in mind.  Many sites have recently "patched" for this vulnerability, so running the scan today to expose the flaw could be after the fact and provides a false sense of security for that site. 

 

Since this could possibly have been out in the wild for a couple of years now, it is prudent to change all of your online passwords.

 

As a matter of fact, everyone should make it a routine procedure to change your online passwords (at least to your email, and any important financial or transaction sites) at least twice per year.  And don't change them to simple characters or names, use a combination of complex upper/lower case, + alphanumeric and special characters.  Further, make sure they are each unique to each site, - don't use the same one across all your sites.

 

Yes, this is a giant pain.  I myself have trouble remembering what I ate for lunch, let alone a complex password change every so often.  And yes, I can confess my wife's email was hacked last year, and from there and in just one week it nearly became catastrophic for us.  Believe me, it can happen to you too.  Just write them all down and store in a secure, non-visible spot.  Make a password recovery plan, and consider carrying your passwords in a hidden spot when you travel, too. 

 

For more great information, Google is your friend!

 

P.S.  I make my living working in IT, and I knew better.  I was just lazy...don't be like I was!

[Jay Kae]

Don't forget also that all sites (orbx, fullterrain, flightsimstore etc etc) run via Cloudflare and Cloudflare fixed the issue last week, before the info was even made public.

 

There is no need for a great hype about this to begin with, everything is vulnerable and the old IT saying goes...

 

'If they want what you have, they will be able to"

https://blog.cloudflare.com/staying-ahead-of-openssl-vulnerabilities

[mjrhealth]

Internet secutity?? bah humbug.

[FleetingThought]

I have to imagine this is neither the first, nor will it be the last, such vulnerability. There are for all we know 42,000 others that haven't even been discovered yet.

Sent from my iPad using Tapatalk