The Gang Garrison 2 Forum
Gang Garrison Discussion => Announcements => Topic started by: MedO on April 10, 2014, 05:52:29 pm
-
Hi everyone. This is a short public service announcement regarding the recently discovered Heartbleed security bug (http://heartbleed.com). Basically, the bug allows any attacker in no special position at all to eavesdrop on random parts of random https connections. A large number of internet services were affected, and if you e.g. logged into one of them recently, an attacker might have eavesdropped on your login and password.
It's not known if any services have been attacked like this and by whom, but it's likely that it happened at least in some places after the bug was published a few days ago. So, best change your passwords everywhere. Yaaay!
However, I can assure you that your forum account is safe from this bug, because we don't use https. That's right, we don't encrypt your connection, so your password is safe! Except from that neighbor in your WiFi network. Or your ISP. Or the intelligence services. Basically, anyone who could directly see the data flow between your PC and ganggarrison.com. But ironic as it is, that might still be more secure than a Heartbleed-affected https, because that can leak your password to an attacker anywhere on the internet.
Since we outsourced our website to Shutter Research, I'd like to pass on the press statement of their CEO:
We here at Shutter Research don't believe in all that security junk. We just put our code chimps in cages and call it a day. Looks like it saved our trousers this time!
-
Steam was attacked by some anonymous people who defaced the name of the new South Park game by hijacking a dev's account or something.
-
Today's XKCD comic has an easy to understand explanation of how it works: http://xkcd.com/1354/ (http://xkcd.com/1354/)
-
lol god damn I was gonna post that
-
<A:CHANGE YOUR EMAIL/STE_M PWORDS>
9:44 PM - jimm: no
11:09 PM - jimm: http://i.imgur.com/6Up52fC.png (http://i.imgur.com/6Up52fC.png)
11:09 PM - jimm: maybe I will actually
-
If you use the Remember Me function on vulnerable sites, are you safe because the eavesdroppers cant see you logging in?
-
you'd have to do it over two years ago and keep the same login session
but then make a new session after it's fixed
-
(http://imgs.xkcd.com/comics/heartbleed_explanation.png)
-
Today's XKCD comic has an easy to understand explanation of how it works: http://xkcd.com/1354/ (http://xkcd.com/1354/)
-
And he even posted about it already. You ok Arctic?
lol god damn I was gonna post that
-
damn, xkcd has become even more humorless
-
damn, xkcd has become even more humorless
You assume it had humour before. I honestly don't understand what people love about it.
-
Who's that guy supposed to be anyways? He hasn't got enough pimples to be a hacker...
-
damn, xkcd has become even more humorless
You assume it had humour before. I honestly don't understand what people love about it.
It makes pseudo intellectuals feel smart for getting the "joke"
-
all filler no killer
-
damn, xkcd has become even more humorless
I don't think it was a joke, but it's a good way of explaining visualizing buffer overflows as well.
-
Today's XKCD comic has an easy to understand explanation of how it works: http://xkcd.com/1354/ (http://xkcd.com/1354/)
oh, I never clicked his and assumed it was this one
http://xkcd.com/1353/ (http://xkcd.com/1353/)