Heartbleed bug

[PraiseHelix]

I don't know if this has been mentioned anywhere else on the site yet, I just figured it would be worth bringing up because of how serious this is sounding. The news about the Heartbleed bug has been everywhere today, I've been using this thing to check any websites that I have accounts with if it has been affected by it. I thought that it would be worth asking wether or not the Forums are safe from this? I'm not trying to fear monger, but the safety of personal information is a big deal.

 

[Null]

We don't encrypt anything.

OpenSSL makes it so that when you use Gmail or your bank, the information sent and received is encrypted. If a program on your computer is malicious and is recording packet data, it cannot read the data.

Because we don't run HTTPS anymore, that means the website is always vulnerable to that sort of data sniffing, as are any non-secure websites.

Additionally, it appears the Heartbleed Bug actually allowed OpenSSL servers to distribute passwords to people who asked nicely. This isn't a problem here.