I use NSA, they back up everything and can get at everything. Included
in my annual payments to the US gummint.
--R
On 4/11/14 5:29 PM, [email protected] wrote:
Archer wrote:
While most of the buzz surrounding OpenSSL's Heartbleed vulnerability has
focussed on websites and other servers, the SANS Institute reminds us
that
software running on PCs, tablets and more is just as potentially
vulnerable.
Tim Crone wrote:
Networking equipment, backup applications, video cameras, networked
refrigerators, printers, networked storage, digital TVs and boxes that
can
be remotely managed - anything with an internet connection that can be
used
remotely. It doesn't have to be a web server, just has to be able to
use a
relatively recent version of OpenSSL's TLS. (I have read that OpenSSH
does
not, by the way.)
Embedded device programmers tend to adopt libraries very slowly, so
many of
these oddball devices will be so far out of date that an exploit
created in
the past two years isn't a serious threat. Of course you might have other
known threats that were never patched; bigger companies will have a
security team to keep on top of such things, but many hardware companies
won't release patches after a relatively short time beyond public ship.
If you aren't using a password manager, now is a good time to start,
since
you really should change every password everywhere over the next few
weeks.
You won't have any idea if your information has leaked, and I would
expect
smart attackers will hold back data until the smoke has cleared.
I haven't seen any financial coverage, but HB could have leaked credit
card
details, bank information, social security numbers, and so on.
Unfortunately the US banks are in such a state that there's not a great
solution for that, as far as I know. Any suggestions?
Best,
Tim
What would you suggest for a password manager? An NYT article mentioned
Roboform <http://www.roboform.com/>,KeePass
<http://keepass.info/>,LastPass <https://lastpass.com/>,1Password
<https://agilebits.com/>, and so on).
NYt recommended Dashlane which they say has been improved.
http://www.nytimes.com/2013/06/06/technology/personaltech/too-many-passwords-and-no-way-to-remember-them-until-now.html?pagewanted=all&_r=0
There is a "long" list of articles, ratings, etc. when searching Bing
under "password manager", so
a professional opinion would be welcome.
Thanks,
Gerry
_______________________________________
http://www.okiebenz.com
To search list archives http://www.okiebenz.com/archive/
To Unsubscribe or change delivery options go to:
http://mail.okiebenz.com/mailman/listinfo/mercedes_okiebenz.com
All posts are the result of individual contributors and as such, those
individuals are responsible for the content of the post. The list
owner has no control over the content of the messages of each
contributor.
_______________________________________
http://www.okiebenz.com
To search list archives http://www.okiebenz.com/archive/
To Unsubscribe or change delivery options go to:
http://mail.okiebenz.com/mailman/listinfo/mercedes_okiebenz.com
All posts are the result of individual contributors and as such, those
individuals are responsible for the content of the post. The list owner has no
control over the content of the messages of each contributor.
