You're looking at Less Wrong's discussion board. This includes all posts, including those that haven't been promoted to the front page yet. For more information, see About Less Wrong.

Lumifer comments on Open Thread April 8 - April 14 2014 - Less Wrong Discussion

3 Post author: Tenoke 08 April 2014 11:11AM

You are viewing a comment permalink. View the original post to see all comments and the full post content.

Article Navigation

Comments (242)
Tags: open_thread

Comments (242)

You are viewing a single comment's thread. Show more comments above.

Comment author: TylerJay 10 April 2014 10:06:12PM *  6 points [-]

List of affected sites with recommendations on which to change your password. Unfortunately, you should also probably change any other sites on which you use the same password.

It's a good time to do an Expected Utility calculation!

if you think that: p(having your accounts compromised) * ( pain if accounts are compromised) > 1 * (inconvenience of changing passwords), then change em!

Also, might be a good opportunity for you to start using a password manager like LastPass

Comment author: Lumifer 11 April 2014 01:29:26AM 4 points [-]

...then change em!

Before you change the password, though, make sure that the website patched the vuln and got a new certificate as private keys were one of those things potentially leaked. Changing the password for a site which didn't patch and get a new cert is worse than useless.

Comment author: TylerJay 11 April 2014 04:28:40PM 1 point [-]

Absolutely right. The list I posted shows which have been patched as well.

Thanks for pointing that out.

Powered by Reddit Powered by Reddit