With the recent Heartbleed bug scare a massive portion of the internet was left vulnerable.
Is There A Hearbleed Test Tool?
The Heartbleed bug is a very serious vulnerability in OpenSSL 1.0.1 through 1.0.1f. The vulnerability allows attackers to read pieces of memory from servers and clients connecting using SSL through a flaw in OpenSSL's implementation of the heartbleed extension.
This has had serious ramifications through the internet as OpenSSL is critical to the web and vulnerabilities affect everything on the internet. Every time you login to a website, make a purchase or your data is stored on a server somewhere, it was likely vulnerable. And this was across the entire internet worldwide. The Heartbleed bug was made public on April 7th 2014. For more information on the Hearbleed bug read this article http://en.wikipedia.org/wiki/Heartbleed_bug on Wikepedia.
What To Do
- For users I recommend changing your passwords for all online accounts.
- For Website Owners & Administrators, test your website for vulnerabilities. You can do this in the following ways:
Heartbleed Test Tools Are Available
- Contact your web hosting provider and enquire.
- User a web based testing tool to scan such as:
- You can use a scanning tool locally on your server such as:
What If My Server Is Not Protected?
Contact your web hosting provider or system administrator as soon as possible. They will help you update your SSL certificate and ensure that you are protected.
What If My Website Doesn't Have SSL?
As you may know from a previous post Google Says Higher Search Engine Rankings For Secured Sites, Google is now giving priority to websites and pages that are secured i.e. HTTPS pages secured with an SSL certificate. If you've been putting off getting an SSL certificate, there's never been a better time or a better reason.
A padlocked website gives your website visitors security. And if you're doing any selling or are storing passwords or any other users or sensitive data an SSL certificate is highly recommended.
If you're in the market for an SSL certifcate view Our SSL certificates