Nieman Foundation at Harvard
HOME
          
LATEST STORY
Tweeting across borders: With a new mobile app, Meedan is working to improve social media translation
ABOUT                    SUBSCRIBE
April 10, 2014, 11:19 a.m.
LINK: source.opennews.org  ➚   |   Posted by: Caroline O'Donovan   |   April 10, 2014

Yes, you need to reset all your passwords. But what are the specific impacts for journalists regarding the Heartbleed security breach announced yesterday? For Source (and also the ProPublica Nerd Blog), Mike Tigas has a breakdown.

If your websites have SSL enabled (when users log in, for example), or if you use VPN software to secure your network, or if you run your own mail servers, your newsroom might be affected by Heartbleed.

Heartbleed can affect anything that uses OpenSSL version 1.0.1 or greater. This includes most open-source webservers (Apache, nginx, lighttpd), and can include email servers, instant message services (ejabberd, etc), and VPN servers (openvpn). Privacy software like Tor and SecureDrop are also vulnerable and have since released updates. Many popular server operating systems are affected and have released patches that fix the bug, including Linux distributions like Ubuntu, Debian, Fedora, Red Hat Enterprise and Arch Linux. […]

If you get a version between 1.0.1 and 1.0.1f, you may be vulnerable. Some Linux distributions include a hotfix for this bug while keeping the same version number, so you should double-check the operating system’s website for more information.

Tigas’ post has specific next-steps for those who may be vulnerable. In addition, ONA’s Jen Mizgata suggests journalists whose hackles are raised by the bug consider attending their security summit this month in Indianapolis.

Show tags Show comments / Leave a comment
 
Join the 15,000 who get the freshest future-of-journalism news in our daily email.
Tweeting across borders: With a new mobile app, Meedan is working to improve social media translation
The app, named Bridge, is meant to solve “a problem that’s a flaw with the way Facebook and Twitter currently operate.”
Serial meets The X-Files in Limetown, a fictional podcast drawing raves after just one episode
“Serial had to stay nonfictional. At the end of the show, it didn’t necessarily mean that it had a conclusion. That’s the biggest advantage we have: We’re making it up. So we can give you an ending.”
The Atlantic is returning to blogging
“We missed the kind of writing it represents. We missed the kind of audience engagement it represents.”
What to read next
2555
tweets
The New York Times built a Slack bot to help decide which stories to post to social media
The bot, named Blossom, helps predict how stories will do on social and also suggests which stories editors should promote.
1287Jo Ellen Green Kaiser: Do independent news outlets have a blind spot when it comes to ethnic media?
The head of the Media Consortium argues that, by defining themselves in opposition to mainstream media, independent progressive outlets miss out on the power of ethnic and community journalism.
1029Newsonomics: 10 numbers on The New York Times’ 1 million digital-subscriber milestone
Digital subscribers are proving to be the bedrock of the Times’ business model going forward. How much more room is there for growth — and at what price points?
These stories are our most popular on Twitter over the past 30 days.
See all our most recent pieces ➚
Encyclo is our encyclopedia of the future of news, chronicling the key players in journalism’s evolution.
Here are a few of the entries you’ll find in Encyclo.   Get the full Encyclo ➚
Texas Tribune
U.S. News & World Report
Chi-Town Daily News
Semana
Houston Chronicle
Alaska Dispatch
Sacramento Press
Corporation for Public Broadcasting
Tampa Bay Times
E.W. Scripps
Apple
EveryBlock