About the HeartBleed Vulnerability

What is it

It is not a virus, it’s a bug in OpenSSL. It is potentially the largest vulnerability in the history of the internet, affecting an estimated two-thirds of secure websites worldwide.

Heartbleed is:

The Heartbleed bug allows anyone on the Internet to read the memory of the systems protected by the vulnerable versions of the OpenSSL software. This compromises the secret keys used to identify the service providers and to encrypt the traffic, the names and passwords of the users and the actual content. This allows attackers to eavesdrop on communications, steal data directly from the services and users and to impersonate services and users.

As security expert Bruce Schneier says “‘catastrophic’ is the right word. On the scale of 1 to 10, this is an 11.”

Very basically – an attacker can move in and out, stealing sensitive data and passwords, and leave zero trace.

Sites that have little lock icon in the URL bar are what’s affected, seen when using HTTPS (like email, Facebook or banking).

Learn More

Mashable – here / Bruce Schneier – here / Heartbleed site here

Check if Your Site is Vulnerable

Here – Filippo.io

What to do

Everyone: change any passwords that may use OpenSSL. Mashable has a list of affected sites here.

Small Business Owners: you need to call your IT guy now. Now. If you are taking credit cards, or any sensitive or private data, you have a responsibility to protect your customers who have trusted you.

Judging eyes :|

A Rant

This Shangri-lala land we’re living in will soon end, maybe with a massive, worldwide compromise, that will force us to change the way the way we conduct ourselves online.  One day, you’ll tell your grandchildren, of a time when people’s passwords were all the same 

This Heartbleed bug is the beginning of that. Go change your passwords.

</rant>

(via XKCD.com)

Imagination.

 

 

It’s Always a Nice Day at the Casino

That’s part of why I like it here.

Another part is that it’s much like an airport – everyone’s guards go down or off, which makes for excellent people watching.

I also think you can learn a lot about a person, based on how they conduct themselves in a casino.

Like that old saying… “if you want to know someone’s real nature, play golf or drink with them”… I’d add, “go together to a casino”.

Casinos are safe. With that many cameras and security, nothing bad can happen to you.

You can walk around openly with a fist full of money (I do), no one is going to try any electronic-scanning-wizardry in here.

I play slots with my gambling partner, we have a system. The arrow above is us crushing it, because a human had to come pay us out, “Hand Pay“.

If that ever happens to you, how that works is: put your palm out flat for the cameras > bills are counted into it > play one hand / spin in front of the attendant > done

Video poker though, that’s my game.

Best odds in the house guys.

See the purple circle first column?

The rule is: play a 9/6 machine, then an 8/5, don’t bother with anything lower.

I play ‘Jacks or Better’.

I have a theory:
video poker strategy, is the same strategy,
used to win at life.

You’ve gotta use an art of the long view, and stick to the system exactly or it doesn’t work, there will be more negative hands than positive ones, because that is the games nature, and you have to stay unaffected by this.

Can’t figure out how to film that though, since cameras aren’t so encouraged in casinos.

I recently had my biggest win ever, playing video poker.

$1,600 YA buddy.

Blog tag = Casino