PDA

View Full Version : Add-On Releases - Check for Heartbleed


vbresults
04-11-2014, 10:00 PM
https://vborg.vbsupport.ru/external/2014/06/6.png

This plugin check your forum's web server for the Heartbleed (CVE-2014-0160) Exploit. If you have cPanel or Plesk installed, it will also check those services immediately after the standard forum check.

Click Mark as Installed on the right hand side of this topic and leave a star rating if you use the plugin. Installation is simple! Get the XML, import it, and "Click Here to Start".

This is powered by filippo.io, so if you don't know what to do if you receive an error, click here (http://filippo.io/Heartbleed/faq.html). If you want this to cover more services out-of-the-box, leave a post in this topic and I'll read it.

https://vborg.vbsupport.ru/attachment.php?attachmentid=148876&stc=1&d=1397323182

Zachery
04-12-2014, 04:57 PM
Does this check to see when the SSL key was last generated?
IF not, then its kind of a silly check, at least one I'd not use an addon for.

blind-eddie
04-12-2014, 06:01 PM
Thanks vbresults,

Installed fine... I get the following message when I run it.

Gabe505
04-12-2014, 10:54 PM
i get the same as above...

Zachery
04-12-2014, 11:07 PM
You guys need to talk to your webhosts about fixing it then.

joeychgo
04-12-2014, 11:33 PM
why not just check with a test site?

https://lastpass.com/heartbleed/
or
http://filippo.io/Heartbleed/




This seems like overkill.....

blind-eddie
04-13-2014, 01:38 AM
You guys need to talk to your webhosts about fixing it then.
Fix what?
why not just check with a test site?



https://lastpass.com/heartbleed/
or
http://filippo.io/Heartbleed/




This seems like overkill.....

Thanks, the first link is for https only and the second one shows same results, but thank you for sharing.

joeychgo
04-13-2014, 04:12 PM
Fix what?

They'll know....

blind-eddie
04-13-2014, 08:28 PM
I next to never watch tv and when I do, I never watch any news nor do I visit news outlets online...

So, I never heard about this bug until this thread, I should have researched it first.

The reason I received the message in my first post is because I do not have an SSL Certificate on my domain. :p

oops...