Heart Bleed Vulnerability

Similar Messages

• Is Linksys Smart Wi-Fi vulnerable to Heart Bleed OpenSSL

  I am curious to know if Linksys Smart Wi-Fi site or routers are vulnerable to the Heart Bleed OpenSSL exploit?
  http://siliconangle.com/blog/2014/04/08/openssl-heartbleed-vulnerability-may-affect-millions/
  BTW: Change your passwords people...
  Solved!
  Go to Solution.

  Thank you, E4200 also has 0.9.8n

• I'm concerned about "heart bleed". How secure is my Apple ID and password?

  Can anyone tell me if I should change my password? Has anyone been compromised by "heart bleed" within apple?

  Phil0124 wrote:
  Apple's services where not Affected according a statement they released after the issue was discovered.
  No such statement can be found. Only a posting from one reporter at recode.net quoting an un-named Apple employee as saying “Apple takes security very seriously. IOS and OS X never incorporated the vulnerable software and key Web-based services were not affected,”.
  Probably best to wait for something with an Apple logo on it to post your words. I stopped at the end of last week when no confirmation showed up.
  There is evidence that some of the sub-contractors they use to distribute data were affected, so perhaps they are vetting them before publising anything.

• Openssl Heart bleed mitigation for IOS XE

  Can someone suggest, how to mitigate the openssl heart bleed with IOS XE, Please share the process
  am currently using below model
  Cisco Catalyst 4500X-16 SFP+ Switch
  IOS version: cat4500e-universalk9.SPA.03.04.02.SG.151-2.SG2.bin

  I believe you'd only have the HeartBleed vulnerability if ip http secure-server was enabled on your device. If that is not enabled, I believe you're ok. 
  I haven't been able to find out too much information from Cisco except what's in this link:
  http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140409-heartbleed
  I too am trying to find out what needs to be done to patch my enterprise's IOS-XE (and any additional products Cisco identifies as being vulnerable) devices to a secure version.
  While waiting to hear from Cisco, my team is going through all of our devices to ensure https is disabled.  

• Are the Apple Macbook pro affected by the heart bleed bug

  Is MacBookPro affected by the Heart Bleed bug?

  No. No Apple product is affected.
  Servers that you may communicate with may be affected though, regardless of the devices you use to connect to them. There isn't anything you can do about that, other than to not use them. That essentially means isolating yourself from the Internet entirely, until such time millions of servers all over the planet are updated to address the vulnerability. No one can guarantee if or when that will ever happen, and by that time some other bug will have been discovered.

• Does the heart bleed bug affect my Mac iPad and iPod and my cloud storage? Do I have to change the passwords?

  Have I got to change my passwords to secure my apple software and data as a result of this heart bleed software security breach?

  Your passwords would only have been compromised if you went to a secure site that was effected by the breach.  You can put the url of the sites you have been using here to test if they are currently effected: https://www.ssllabs.com/ssltest/.

• How do I know if my airport Extreme 802.11n needs updated firmware based on heart bleed issue using Mavericks?

  I have Mavericks on oour laptops. I have an Airport Extreme 802.11n WI-FI not sure when I bought it. THe article by Tim Cook and Heartbleed issue is very technical and only mentions Leopard operating system. So do not know if I need to upgrade firmware or not. Not sure I undertand "Back to my Mac" or what to do? Also have an airport express.

  it doesn't
  only the newer AC/tower designed models required the updated firmware

• Heart bleed running apple and windows

  is there reason for concern IF I am running "windows XP and apple" on my mac bk pro?

  Yes. One cannot affect the other, but because it attacked accounts you may have, you should change your passwords. Try reading about what it is.

• Can not delete Fox news icon from Safari Favorites Bar, keeps coming back

  I can not delete "Fox news" icon from Safari Favorites Bar. Dogpile Search engine also.  Both keep coming back with icons upon new opening of Safari.
  I have removed these icons from the Book Mark files and Favorites Bar menu and any reference in the LIbrary and replaced them with less spammy evercookie news and search engines 3 times to no avail.  I just upgraded Safari (April 2014) and it made no difference. These sites represent the paradigm I
  no longer am putting energy into nor want which is why I have rid these increasing more corrupted and cookie agressive sites.  But now.....
  they won't let me go!!  Any one no how?

  Thank you for trying but no not the problem.  Had the same problem with Iphone 4S.  Would not connect to my mail server and tried to send me to fraudulent website in the UK/England.
  I did a restore to factory restore to the phone with upgrade to newest operating system, my was up to date until OS 7 as I heard there were problems.  Now it has OS 7. 
  Neither I nor verizon could get the phone up and connected for service again.  Taking phone to
  apple store on Tues.
  I am suspecting the "heart bleed"  vulnerability.

• Send iMovie in iMessage.

  I made a birthday movie in iMovie, for a friend - but I cant send it to her!!!.
  I dont want to send it as email, FB, Twitter, I want to send it as a iMessage.
  On my Nokia it was sooo easy to transfer files, make folders for work files,
  send any file the way I want to and so on.
  I have used Mac since the late 80s, but I still cant find out how to send it!!!
  HEEEEELP!!!
  (My apple heart bleeds when I have to say,
  iPhone is not working well as a phone,
  or a help at work like the Nokia did, it is just a fun, fun, toy, as long as I dont want to
  make a movie on my MacBook Pro and send it on my iPhone...).

  I figured it out!!!
  Send the movie as email to my self -> save movie on iPhone -> send as iMessage!!!
  The iPhone lives to see another day!

• IMac: USB and Thunderbolt ports seems loose

  I'm not sure if this is really a question other than wondering if other people experience it.
  I have a 14.2 27" iMac.  The thunderbolt port is used to connect to a second display, and the USB ports are primarily used for external drives.
  In all cases, I find that even the slightest movement of the USB or Thundebolt cable will result in the device being momentarily physically disconnected.  I have tried to reproduce this on my gaming PC with the USB drives and I can wiggle the cable all I want without the drive disconnecting.
  Since all of the USB ports on the iMac do this, and none of the ports on the PC do, I can only assume there is some sort of design flaw or manufacturing defect. 
  Any thoughts?
  -Doc

  Yep, same here, my relatively new, very expensive, souped up 27 iMac keeps on dropping the drive connected to the Thunderbolt port whenever I unplug something from a neighbouring USB port.
  And no, Apple I am not lugging a huge 27 inch iMac back to the store for you to fix something that is your fault, which you don't admit is happening to many iMacs and which you apparently don't know how to fix. And apparently in Australia we don't have site visits for Apple Care....
  I am a weak older person who can't lift the thing (and who waited a very long time to be able to afford this machine) - but you see I never expected my iMac and Mavericks to be so darn dodgy - I trusted you Apple.. as I have for the last 30 years of using an Apple.
  Mavericks probs were bad enough, but it was a software prob which eventually (hopefully I thought they'll fix) - it does make my heart bleed however to realise that Apple with its billions of cash in the bank can't afford to hire some decent coders to fix multiple probs with Mavericks in a timely fashion....
  But now?????
  - now I realise I actually have a computer with a faulty thunderbolt port....and that Apple does not seem to be acknowledging this fault....Apple had better find a solution that does not give me a hernia....
  Thanks for your input folks in this forum.....sorry for sounding so annoyed - that's cos I am:-)
  ( and yes I am going to put this in feedback somewhere so the robot who reads can bin it more easily)

• How do I fix out going mail problem because of bleeding heart

  My internet mail provider patched their servers  due to Bleeding heart and I can no longer send mail from my computer. I followed their instructions and am still not able to send mail. They say I have to speak to Apple- its an Apple mail problem. 1st the message was the certificate was not valid, now i just get a message that I can't connect to the server.

  Try deleting the old email account and adding it again.
  It is also worth remembering that the heartbleed bug also will cause certificate authorities to revoke their own certificates which guarantee the validity of any server certificates. This can cause Mail to throw errors.
  If this is the case, try waiting it out for a few days, and if you are desperate, you should just be able to mark the certificate as trusted when the certificate error occurs

• The bleeding-edge & configs

  Most of my linux experience has happened running Arch, and I've come to really enjoy the rolling release model, aur dev pkgbuilds and overall bleeding-edge aspect of the distro.
  As a hacker at heart, I like to keep up with the latest versions of my favorite software, excrutiatingly configuring every bit to taste.
  However, I've had a backlash lately, when my work got me administrating a couple of vps boxes running other linux distros.
  What happened was that most of my dotfiles simply didn't work with the versions packaged on these distros, to a point that trying to find the culprit options ended up being too time consuming, so I just gave up and used the dreaded defaults for most things, from bash to tmux, which was rather frustrating.
  Has anyone faced the same issues, and managed to find a way to stay on the bleeding while using arch, yet maintain the portability of their configs, or is it just too much work ?

  to be honest, I'm a natural born slacker and don't bother about bleeding edge at work. I keep my own computer running on Arch with my very own, personal setup, but all the other machines I look after get the pre-installed-default-outofthebox-setup with only necessary tweaks to suit the working environment.
  I did try running arch on a number of machines at our shop, but in the end it's too much work. Also, when I'm not there, nobody knows what to do to keep the machines up-to-date. Now everything Linux is running Debian and Linux-Mint and everybody is happy.
  I however, will not give up my arch setup

• Is java vulnerable in safari 5.1? I have a macbook using 10.6.8

  I am worried about the java vulnerability.  I need it to pay bills on my banks website.  is java vulnerable in safari 5.1.  I am using a macbook with os 10.6.8

  The recently discovered zero-day flaw in Java 7 is so serious that the U.S. Department of Homeland Security has warned users to disable or uninstall it, and Apple has disabled the Java 7 plugin on Macs through its OS X anti-malware system, in order to protect users from a potentially serious security issue.
  You should disable Java (if not already done) until either the US Department of Homeland Security, or Oracle, declare it safe and Apple restore the facility. Oracle have released an update said to fix the security flaw, available from here:
  http://www.oracle.com/technetwork/java/javase/downloads/jre7-downloads-1880261.h tml
  Javascript should not be disabled (it has nothing to do with Java), and is probably what your bank is using.

• Shellshock Vulnerability

  Are any of the Adobe Creative Cloud services vulnerable to the Bash / Shellshock bug?

  The Cisco PSIRT is investigating the impact of this vulnerability on Cisco products and will disclose any vulnerabilities according to our security policy, which is available at http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html .
  An INTERIM Cisco Security Advisory was published on September 25th, 2014 and is available at the following URL:
  http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140926-bash
  The Cisco PSIRT will update this Cisco Security Advisory as more information becomes available.