What is KVR Audio? | Submit News | Advertise | Developer Account

Options (Affects News & Product results only):

OS:
Format:
Include:
Quick Search KVR

"Quick Search" KVR Audio's Product Database, News Items, Developer Listings, Forum Topics and videos here. For advanced Product Database searching please use the full product search. For the forum you can use the phpBB forum search.

To utilize the power of Google you can use the integrated Google Site Search.

Products 0

Developers 0

News 0

Forum 0

Videos 0

Search  

Change your passwords.. NOW

If it's not about music it belongs here! Please keep it civil and decent.... except - see below->

Moderator: Moderators (Main)

User avatar
KVRAF
 
5561 posts since 8 May, 2008, from ssssskipping ......... I left you there

Postby standalone; Thu Apr 10, 2014 2:05 pm Re: Change your passwords.. NOW

farlukar wrote:
standalone wrote:That's what 'targeted attack' means in the security business. Normal people are victims of mass attacks, not of targeted ones.
Ah ok, minor misunderstanding then. Mass attacks have lots of targets, but different semantics for different businesses I guess.
It all depends on what “is” is :hihi:


Machine guns for us, snippers for the rich and powerful, you get the idea.

:hihi:
"An Arrogant Instigator"
User avatar
KVRAF
 
8954 posts since 7 Dec, 2004, from Vancouver, Canada
 

Postby aciddose; Thu Apr 10, 2014 2:25 pm Re: Change your passwords.. NOW

Burillo wrote:aciddose, are you high?


Uh, yeah, but this is beside the point. The point is that... you know? Heh, yeah... Know what I mean? Like, heheh.

http://www.youtube.com/watch?v=qkPGlVqqEP0
User avatar
KVRAF
 
8850 posts since 12 Mar, 2012, from South Bavaria - near the alps... :-)

Postby Tricky-Loops; Thu Apr 10, 2014 2:36 pm Re: Change your passwords.. NOW

Would be interesting to know (not just believe) how often security holes of password manager programs are exploited and how safe those programs really are...
User avatar
KVRAF
 
2596 posts since 2 Jul, 2007, from Oxycontin Acres, Georgia, USA

Postby SODDI; Thu Apr 10, 2014 5:11 pm Re: Change your passwords.. NOW

http://mashable.com/2014/04/09/heartble ... -affected/

The above article purports to be a listing of major sites and their vulnerability to Heart Bleed, up or down.

There are also sites which will allow you to enter an url to see if it's been patched or is vulnerable. I don't know if Native Instruments, Steinberg or other major computer music developers have responded. Saw a couple of the smaller guys and Camel stating they were OK.
User avatar
KVRAF
 
6444 posts since 13 Mar, 2009, from UK
  

Postby seismic1; Thu Apr 10, 2014 5:17 pm Re: Change your passwords.. NOW

Guess what I've been doing tonight? I can think of more enjoyable things to do in the evening :(

Here is an article for one of yesterday's newspapers in the UK. It contains a few pertinent facts, but misspells the security consultant's name:-

http://www.dailymail.co.uk/sciencetech/article-2601379/Will-changing-password-really-protect-Heartbleed-Experts-warn-solution-not-simple-thought.html

Here is an article from Mr. Cluley's website:-

http://grahamcluley.com/2014/04/heartbleed-bug-passwords/

I think it's important to note that it is not a good idea to change a password for a particular site if that site is not yet proven/known to be secure

And I wonder how easy it will be to obtain this information.
User avatar
KVRAF
 
8954 posts since 7 Dec, 2004, from Vancouver, Canada
 

Postby aciddose; Thu Apr 10, 2014 6:07 pm Re: Change your passwords.. NOW

SODDI wrote:Saw a couple of the smaller guys and Camel stating they were OK.


I was apparently using an old version of my distro for the past four years and never bothered to change my distro name to the newer one, so I missed this bug. Not to mention I don't even run public facing ssl or ssh. Although you never know exactly what might be affected until a lot of effort has gone into research. Lots of dependencies that might not be entirely obvious.
User avatar
KVRAF
 
5561 posts since 8 May, 2008, from ssssskipping ......... I left you there

Postby standalone; Fri Apr 11, 2014 2:07 am Re: Change your passwords.. NOW

Tricky-Loops wrote:Would be interesting to know (not just believe) how often security holes of password manager programs are exploited and how safe those programs really are...


You can use Google for that. There are thousands of security experts, white hats, grey hats and black hats trying to become rich and famous by finding (and in some cases exploiting) every kind of vulnerabilities.

Just search for your password manager's name + 'vulnerability', or 'exploited' or any similar term.
"An Arrogant Instigator"
User avatar
KVRAF
 
5561 posts since 8 May, 2008, from ssssskipping ......... I left you there

Postby standalone; Fri Apr 11, 2014 2:09 am Re: Change your passwords.. NOW

seismic1 wrote:Guess what I've been doing tonight? I can think of more enjoyable things to do in the evening :(

Here is an article for one of yesterday's newspapers in the UK. It contains a few pertinent facts, but misspells the security consultant's name:-

http://www.dailymail.co.uk/sciencetech/article-2601379/Will-changing-password-really-protect-Heartbleed-Experts-warn-solution-not-simple-thought.html

Here is an article from Mr. Cluley's website:-

http://grahamcluley.com/2014/04/heartbleed-bug-passwords/

I think it's important to note that it is not a good idea to change a password for a particular site if that site is not yet proven/known to be secure

And I wonder how easy it will be to obtain this information.


It's very easy, see my post on the first page of this thread.
"An Arrogant Instigator"
KVRist
 
65 posts since 6 Jan, 2010

Postby digidennis; Fri Apr 11, 2014 2:29 am Re: Change your passwords.. NOW

aciddose wrote:Not to mention I don't even run public facing ssl or ssh..


No need to worry about ssh..
Last edited by digidennis on Fri Apr 11, 2014 12:00 pm, edited 1 time in total.
KVRian
 
647 posts since 30 Aug, 2011, from somewhere in universe
 

Postby Loki Fuego; Fri Apr 11, 2014 4:11 am Re: Change your passwords.. NOW

Tricky-Loops wrote:Would be interesting to know (not just believe) how often security holes of password manager programs are exploited and how safe those programs really are...

I'm using Roboform for years. Never heard anything bad about it.
Wonder whether my advice worth a penny? Check my music at Soundcloud and decide for yourself.
re:vibe and Loki Fuego @ Soundcloud
User avatar
KVRAF
 
7550 posts since 20 Jan, 2008, from Down on the farm

Postby Numanoid; Fri Apr 11, 2014 4:27 am Re: Change your passwords.. NOW

Maybe the whole Heartbleed thing is a scam, so that vendors can send these kind of self promoting messages?:
We at .... take internet security and the protection of secure information very seriously and we want to reassure you that your details as one of our customers are completely safe. Our web servers have been tested and were NOT affected by the Heartbleed Bug.


:P :D
Ready to pounce
KVRAF
 
13554 posts since 23 Jun, 2010, from north of London ON
 

Postby trimph1; Fri Apr 11, 2014 6:30 am Re: Change your passwords.. NOW

Barry
The man who survived mustard gas and pepper spray is now a seasoned veteran
http://www.ambientonline.org/
User avatar
KVRAF
 
8954 posts since 7 Dec, 2004, from Vancouver, Canada
 

Postby aciddose; Fri Apr 11, 2014 8:52 am Re: Change your passwords.. NOW

digidennis wrote:
aciddose wrote:
SODDI wrote: Not to mention I don't even run public facing ssl or ssh..


No need to worry about ssh..


Not according to research I've seen.

http://security.stackexchange.com/quest ... to-openssh

Apparently it is possible for ssh keys and other data to have been located in the same memory.
User avatar
KVRAF
 
2596 posts since 2 Jul, 2007, from Oxycontin Acres, Georgia, USA

Postby SODDI; Fri Apr 11, 2014 9:28 am Re: Change your passwords.. NOW

digidennis wrote:
aciddose wrote:
SODDI wrote: Not to mention I don't even run public facing ssl or ssh..


No need to worry about ssh..


Misquote.
KVRist
 
65 posts since 6 Jan, 2010

Postby digidennis; Fri Apr 11, 2014 11:58 am Re: Change your passwords.. NOW

aciddose wrote:
Not according to research I've seen.

http://security.stackexchange.com/quest ... to-openssh

Apparently it is possible for ssh keys and other data to have been located in the same memory.

http://superuser.com/questions/739349/does-heartbleed-affect-ssh-keys
PreviousNext

Moderator: Moderators (Main)

Return to Off Topic