Snails - Response on Threads Part 3

[SilverBear]

down to geoffrey i go

My! Aren't we formal today?!?!

 

[SilverBear]

definitely premature spraying...

I hate that!!!

 

[FranC]

Got to 61 but windy. Supposed to be 40's overnight.

 

[AttyPops]

speaking of ''grrrrr''

i hate cleaning days ...................

down to geoffrey i go

Speaking of hating stuff. I'm not that fond of hackers at the moment. (Well, ever really. White-hat ones probably tolerable.)
Changed several passwords....just in case.

 

[tiburonfirst]

soup and pizza to finish off this day

 

[SilverBear]

Speaking of hating stuff. I'm not that fond of hackers at the moment. (Well, ever really. White-hat ones probably tolerable.)
Changed several passwords....just in case.

From WSJ:

TECHNOLOGY
Heartbleed Bug Found in Cisco Routers, Juniper Gear
Encryption Bug Affects Equipment That Connects to the Web


The encryption bug that has the Internet on high alert also affects the equipment that connects the Web.

Cisco Systems Inc. CSCO -2.03% and Juniper Networks Inc., JNPR -1.82% two of the largest manufacturers of network equipment, said Thursday that some of their products contain the "Heartbleed" bug, meaning hackers might be able to capture user names, passwords and other sensitive information as it moves across corporate networks, home networks and the Internet.


These devices likely will be more difficult to fix. The process involves more steps and businesses are less likely to check the status of network equipment, security experts said.Many websites—including those run byYahoo Inc., YHOO -4.22%Amazon.com Inc. and Netflix Inc.—quickly fixed the hole after it was disclosed Monday. But Cisco and Juniper said the security flaw affects routers, switches and firewalls used in businesses and at home.

Bruce Schneier, a cybersecurity researcher and cryptographer, said, "The upgrade path is going to involve a trash can, a credit card, and a trip to Best buy."

But that may not yet be an option: the products available at retail stores now likely were shipped before the bug was revealed on Monday. So they may also contain the defective software, from an encryption code known as OpenSSL.

Companies often use firewalls and virtual private networks to protect their computer systems. But if the machines that run the firewalls and virtual private networks are affected by the Heartbleed bug, attackers could use them to infiltrate a network, said Matthew Green, an encryption expert at Johns Hopkins University.

"It's pretty bad," Mr. Green said. "Lots and lots of people connect to these things."

Mr. Green and others said the bug likely affects some home-networking equipment, such as wireless routers.

In a customer bulletin updated Thursday, Cisco told clients that dozens of products are "affected by a vulnerability that could allow an unauthenticated, remote attacker to retrieve" potentially sensitive information. In the bulletin, it said 65 products were under investigation and another 16 had been confirmed vulnerable.

Cisco said it would update customers when it has software patches. In the meantime, its security researchers offered users software that it said would detect hackers exploiting the bug. A Cisco spokesman referred a query to the bulletin on its website.

Juniper said the process of updating its equipment might be lengthy. "It doesn't sound like a flip the switch sort of thing," said Corey Olfert, a Juniper spokesman. "I don't know how quickly they can be resolved."

To keep prying eyes out, websites and network equipment use encryption to turn sensitive information into a jumble or unreadable text. Since writing encryption code is complex, developers often use a free, open-source version called OpenSSL. It's a barebones project managed by four European coders.

The Heartbleed bug—first introduced into OpenSSL two years ago—allows hackers to grab bits of data from servers and equipment after it has been decrypted.

abcdefgh

 

[tiburonfirst]

Users can test a site’s vulnerability to the Heartbleed bug by visiting a site created by developer Filippo Valsorda where you can enter web addresses and find out if the bug has been fixed.
Test your server for Heartbleed (CVE-2014-0160)

 

[tiburonfirst]

peeking in ......................

 

[FranC]

I'm here.Tib

 

[tiburonfirst]

hiya, frannie! glad you got up to 60 today

 

[FranC]

61 in fact. Could have done without the wind but it was still an improvement.

 

[tiburonfirst]

see? there IS hope!

brb

 

[FranC]

Hope?? Snow next week.

 

[AttyPops]

Oh noooooooo.

Not "brb"....that takes forever! (I know...I know... I do it too)

Hi Fran.
Thanks for the info Bear.

 

[AttyPops]

No snow allowed Fran. Call the weather people and have them change the prediction......

 

[FranC]

Hiya,Atty I'm hoping they change it. Snow would be depressing.

 

[tiburonfirst]

hiya, atty! cassie was pretty quick today

 

[FranC]

How's Cassie doing,Tib?

 

[tiburonfirst]

unchanged, frannie - very, very slow

 

[AttyPops]

(((Tibs & Cassie)))

I know it's tough. Fido's still doing "OK"-ish. Takes a bit. He's weak...stumbling some. It's sad for me to watch. He gets breakfast every a.m. I think that helps some...older dogs do better eating twice a day. But still, can't control his hind legs well. Changes positions OK though so I don't have to get him to move around too often. :/