Catch up on stories from the past week (and beyond) at the Slashdot story archive

 


Forgot your password?
Close
typodupeerror
×
Security Bug

Over 300,000 Servers Remain Vulnerable To Heartbleed 74

Posted by samzenpus from the protect-ya-neck dept.
An anonymous reader writes Even though it's been a couple months since the Heartbleed bug was discovered, many servers remain unpatched and vulnerable. "Two months ago, security experts and web users panicked when a Google engineer discovered a major bug — known as Heartbleed — that put over a million web servers at risk. The bug doesn't make the news much anymore, but that doesn't mean the problem's solved. Security researcher Robert David Graham has found that at least 309,197 servers are still vulnerable to the exploit. Immediately after the announcement, Graham found some 600,000 servers were exposed by Heartbleed. One month after the bug was announced, that number dropped down to 318,239. In the past month, however, only 9,042 of those servers have been patched to block Heartbleed. That's cause for concern, because it means that smaller sites aren't making the effort to implement a fix."
This discussion has been archived. No new comments can be posted.

Over 300,000 Servers Remain Vulnerable To Heartbleed More

Over 300,000 Servers Remain Vulnerable To Heartbleed

Comments Filter:

  • Hosting? (Score:5, Insightful)

    by houstonbofh ( 602064 ) on Sunday June 22, 2014 @04:10PM (#47294369)
    I wonder how many of these are dirt cheap hosting servers, and no one who should care even knows the hosting company is asleep at the switch...

  • Let's put teenagers in jails (Score:3, Insightful)

    by Jorge666 ( 3709467 ) on Sunday June 22, 2014 @04:20PM (#47294403)

    Why would someone patch the web server?
    We don't like smart and taking initiative teenagers, here in the USA

    1. Teenager sends email to administrators advising them about unpatched server.
    2. SWAT raids the home of the kid.
    3. DA sends the kid to private jail for life and announces running for another term.
    4. ?
    5. Profit or reality of life in the USA

  • Re:and yet cryptocurrencies remain immune...! (Score:5, Insightful)

    by plover ( 150551 ) on Sunday June 22, 2014 @04:45PM (#47294499) Homepage Journal

    You've packed a lot of wrong into such a short post. If a system is insecure a "good" architecture is irrelevant - you're still screwed. And either way, neither architecture nor cryptocurrencies have anything to do with this problem, which is unpatched OpenSSL.

  • Re:and yet cryptocurrencies remain immune...! (Score:1, Insightful)

    by jaeztheangel ( 2644535 ) on Sunday June 22, 2014 @04:53PM (#47294517)

    If a system is insecure a "good" architecture is irrelevant - you're still screwed.

    Dear John

    Please can you explain how BitCoin is vulnerable to Heartbleed?

    I think good architecture is essential to good security. That's why I posted.

    Many Thanks

    Jawad Yaqub

  • Re:Better Career Path (Score:4, Insightful)

    by jellomizer ( 103300 ) on Monday June 23, 2014 @09:54AM (#47297495)

    300,000 seems like a small number, if you stop and consider how many sub amateurs setup web servers.
    You were told that Linux is very secure and you don't have to worry about hacks and viruses. You installed your favorite distribution, and got what ever web stuff you wanted and then you left the server running ranking up Uptime and not touching the server ever again. Heck I am willing to bet for some of these systems the Hard Drive failed years ago, and they are running off of ram alone.
    Web Page still works, everything is A-OK.

Slashdot Top Deals

Get hold of portable property. -- Charles Dickens, "Great Expectations"

Close