Posted on Wednesday, 09 April 2014

It's been a bit embarrassing for SSL recently, earlier this year was the problem with Apple's software which had a SSL weakness, and now we've got "Heartbleed".

(For information about the earlier problem with Apple you can read our status on Facebook about it: https://www.facebook.com/ChesterSolutions/posts/482381345199964)

The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library. This weakness allows stealing the information protected, under normal conditions, by the SSL/TLS encryption used to secure the Internet. SSL/TLS provides communication security and privacy over the Internet for applications such as web, email, instant messaging (IM) and some virtual private networks (VPNs).

Source: heartbleed.com

What does this really mean?

There is a risk that some servers could allow access to information that should be private.

What can you do?

If your website is hosted with us, our servers are not affected by this bug. You have nothing to worry about.

If your website is hosted with another company then you should contact their support department and ask if you are affected. Most systems have a patch ready to fix the problem.