x

LESSWRONG

LW

Open Thread April 8 - April 14 2014 — LessWrong

6

Open Thread April 8 - April 14 2014

8th Apr 2014

1 min read

6

You know the drill - If it's worth saying, but not worth its own post (even in Discussion), then it goes here.

6

New Comment

Rendering 0/245 comments, sorted by

(show more) Click to highlight new comments since: Today at 9:25 PM

Some comments are truncated due to high volume. (⌘F to expand all)Change truncation settings

More from Tenoke

Curated and popular this week

245

Comment Permalink

Richard_Kennaway12y40

I changed passwords on gmail, but what I'm wondering is why I haven't seen a single announcement on any of the sites I log in to about the issue, including gmail, and others that third party sites have listed as vulnerable.

I changed passwords on gmail...

I was going to wait until I get a message from Google, since I have 2-step verification enabled. I don't see how heartbleed could compromise it. Except of course for application-specific passwords.

2asr12y

I have friends who do security at Google, and they explicitly told me "we don't think the company was vulnerable and you don't need to change your GMail password." So as near as I can tell, the third-party sites and Google, inc, disagree about whether Google is vulnerable here.