We are not affected - HeartBleed Bug

valkia · 15 Apr 2014 at 13:37

For anyone who may have been concerned about the recent HeartBleed bug which has been in the media, OcUK has not and wouldn't have been able to be affected as we were not running a vunerable version of OpenSSL.

We continue as normal

IC3 · 15 Apr 2014 at 13:41

OCUK is No.1

valkia · 15 Apr 2014 at 13:47

IC3 said:
OCUK is No.1

I like you.

Footyslayer · 15 Apr 2014 at 16:16

Good to know

Sliver · 15 Apr 2014 at 16:21

Happy for OCUK, but even happier for Mumsnet.

jh30uk · 15 Apr 2014 at 22:20

Is mostly not effect MS servers going by my reading.

A few of my Fav Pr0n site are though.

TwsT · 16 Apr 2014 at 11:20

jh30uk said:
Is mostly not effect MS servers going by my reading.

A few of my Fav Pr0n site are though.

LOL

thenewoc · 19 Apr 2014 at 15:19

Just a suggestion, is it possible for the login screen on the shop site to have tab-able fields so that 'email address' is the first tab-able field and password the second. This would then be consistent with the default behavior of KeePass. Currently it doesn't seem to be possible to tab between fields which doesn't suit Auto-Type feature of KeePass.

deshepherd · 20 Apr 2014 at 12:53

I gather the bug was introduced in a new version of open SSL released a couple of years ago. So is OCUK ok because of an "it ain't broke so don't fix it" approach to their website or because they don't bother to install updates!

TALON1973 · 20 Apr 2014 at 20:25

i'd expect ocuk to be sending a general mail to members tbh to confirm this, and not have me find this randomly on the website

Dicehunter · 20 Apr 2014 at 20:44

To all OCUK staff, This pleases me in more ways than words can describe so here's a serious picture !

Captain_Bosh · 26 Apr 2014 at 09:43

Good to hear

davido_labido · 26 Apr 2014 at 10:12

TALON1973 said:
i'd expect ocuk to be sending a general mail to members tbh to confirm this, and not have me find this randomly on the website

I'd prefer them to only tell me when there is a problem.

David Bisset · 26 Apr 2014 at 10:48

davido_labido said:
I'd prefer them to only tell me when there is a problem.

Agreed. While this problem may have been more widespread and publicised than most there are security holes found in systems every day - I'd rather sites didn't spam me with what isn't affecting me!

deshepherd said:
I gather the bug was introduced in a new version of open SSL released a couple of years ago. So is OCUK ok because of an "it ain't broke so don't fix it" approach to their website or because they don't bother to install updates!

Or they don't use SSL for their secure connections. Or they use SSL but don't use HeartBeat. Or many other answers that result in not affected. Given the wording in the OP I assume one of these two though.