@nutcrackr said:
Man I have so many passwords across many sites. How do I know which ones have been compromised and which ones are now safe to change? I do not have LastPass.
Shouldn't the owners of each site send out emails to all users telling them...
you can test sites that you use with the following.
http://filippo.io/Heartbleed/
Its not recommended to run out and change *ALL* your passwords. Some sites are simply not effected (ie, any running on IIS).
My servers werent affected as I was running OpenBSD 5.2 on the production machine, 5.3 and 5.4 were affected however.
Which is why I only said steam as I know it was affected and was patched rather quickly. Its not a case of they probably have anyones details, its a case of they possibly could have. In the time period before the patch, after the vunerability was made public. - Thats the concern. And they will be targeting any non patched site in hope of catching some information.
If you do receive a link to reset, make sure the link doesnt contain login information. If it does, visit the site manually and reset it via your account profile options.
Log in to comment