Information About The Heart Bleed Vulnerability

HostGo is aware of the vulnerability, dubbed “Heartbleed”, which is a security concern for users of OpenSSL, a widely-used opensource cryptographic software library. It can allow attackers to read the memory of the systems using vulnerable versions of OpenSSL library (1.0.1 through 1.0.1f). This may disclose the secret keys of vulnerable servers, which allows attackers to decrypt and eavesdrop on SSL encrypted communications and impersonate service providers. In addition, other data in memory may be disclosed, which conceivably could include usernames and passwords of users or other data stored in server memory. 

HostGo patched all of its servers that were affected shortly after the vulnerability was announced. Due to the nature of the vulnerability it is impossible to know if any information, including private keys, passwords, and session ID’s, have been compromised. Therefore, as a precaution we recommend reissuing and revoking any SSL certificates you have and resetting any passwords.

If you have any questions or concerns, please feel free to ask us.

  • 0 Bu dökümanı faydalı bulan kullanıcılar:
Bu cevap yeterince yardımcı oldu mu?

İlgili diğer dökümanlar

How do I password protect a directory?

Overview Password protection allows you to require a username and password to access a folder...

How do I generate a new GnuPG Key?

Overview GnuPG is a publicly available encryption scheme that uses the "public key" approach....

How can I deny someone from accessing my web site?

Overview The IP Blocker will allow you to block a range of IP addresses to prevent them from...

How do I scan my email and web site for viruses?

Overview The control panel includes a built-in virus scanner. Which allows you to scan your...