Nieman Foundation at Harvard
HOME
          
LATEST STORY
In New Haven, a low-power FM experiment seeks local conversation — and financial sustainability
ABOUT                    SUBSCRIBE
April 10, 2014, 11:19 a.m.
LINK: source.opennews.org  ➚   |   Posted by: Caroline O'Donovan   |   April 10, 2014

Yes, you need to reset all your passwords. But what are the specific impacts for journalists regarding the Heartbleed security breach announced yesterday? For Source (and also the ProPublica Nerd Blog), Mike Tigas has a breakdown.

If your websites have SSL enabled (when users log in, for example), or if you use VPN software to secure your network, or if you run your own mail servers, your newsroom might be affected by Heartbleed.

Heartbleed can affect anything that uses OpenSSL version 1.0.1 or greater. This includes most open-source webservers (Apache, nginx, lighttpd), and can include email servers, instant message services (ejabberd, etc), and VPN servers (openvpn). Privacy software like Tor and SecureDrop are also vulnerable and have since released updates. Many popular server operating systems are affected and have released patches that fix the bug, including Linux distributions like Ubuntu, Debian, Fedora, Red Hat Enterprise and Arch Linux. […]

If you get a version between 1.0.1 and 1.0.1f, you may be vulnerable. Some Linux distributions include a hotfix for this bug while keeping the same version number, so you should double-check the operating system’s website for more information.

Tigas’ post has specific next-steps for those who may be vulnerable. In addition, ONA’s Jen Mizgata suggests journalists whose hackles are raised by the bug consider attending their security summit this month in Indianapolis.

Show tags Show comments / Leave a comment
 
Join the 15,000 who get the freshest future-of-journalism news in our daily email.
In New Haven, a low-power FM experiment seeks local conversation — and financial sustainability
WNHH, debuting next week, aims to extend the community journalism of the New Haven Independent to the airwaves — and to reflect the city it’s in.
Sunlight Foundation, Melody Kramer, and 20 other media/tech projects get Knight Prototype Funds
The ideas include Melody Kramer’s Media Public project, which would reimagine routes to public media membership and community engagement.
How AJ+ embraces Facebook, autoplay, and comments to make its videos stand out
“We think a lot about whether a video works with the sound off. Do we have to subtitle it to keep the audience retention high? Do we need to use big fonts?”
What to read next
1119
tweets
New Pew data: More Americans are getting news on Facebook and Twitter
A new study from the Pew Research Center and Knight Foundation finds that more Americans of all ages, races, genders, education levels, and incomes are using Twitter and Facebook to consume news.
808Newsonomics: The halving of America’s daily newsrooms
If you’re lucky enough to have the right deep-pocketed owner buy your paper and steady it, you’ve won the lottery. If you’re in a town whose paper is owned by the better chains, or committed local ownership, your loss will probably be mitigated. Otherwise, you’re out of luck.
698How 7 news organizations are using Slack to work better and differently
Here’s how Fusion, Vox, Quartz, Slate, the AP, The Times of London, and Thought Catalog are using Slack for workflow — and which features they wish the platform would add.
These stories are our most popular on Twitter over the past 30 days.
See all our most recent pieces ➚
Encyclo is our encyclopedia of the future of news, chronicling the key players in journalism’s evolution.
Here are a few of the entries you’ll find in Encyclo.   Get the full Encyclo ➚
The Philadelphia Inquirer & Daily News
BBC News
Texas Tribune
Voice of San Diego
CNN
Bloomberg
The Bay Citizen
New Haven Independent
Instapaper
DocumentCloud
Bloomberg Businessweek
Quartz