Jump to content


Photo

Safe from "Heartbleed"


  • Please log in to reply
14 replies to this topic

#1 Joel Brown

Joel Brown

    Administrator

  • Admin
  • 2,535 posts
  • Gender:Male
  • Location:Houston, TX
  • Accordance Version:10.x

Posted 10 April 2014 - 12:40 PM

News of the internet vulnerability "Heartbleed" has been rapidly spreading throughout the internet, and we are here to let you know that our servers were patched two days ago, almost immediately after fixes became available.  You can test our security with sites such as:

If you have any questions, please feel free to let us know.  Regardless, you can rest assured that your data and transactions are safe here.


  • Michael J. Bolesta, Tony Lawrence and Graham Buck like this
Joel Brown

By day: Consultant for Oaktree
By night: Freelance Trombonist and Private Instructor

#2 fraserhess

fraserhess

    Member

  • Members
  • Pip
  • 1 posts
  • Gender:Male
  • Accordance Version:10.x

Posted 10 April 2014 - 02:12 PM

While the patches appear to be applied, the SSL certificate for www.accordancebible.com has not been re-issued. Under the heartbleed bug, the private key for the certificate could have been stolen and should be replaced.


  • Ken Han and Michael J. Bolesta like this

#3 Helen Brown

Helen Brown

    Mithril

  • Admin
  • 8,091 posts
  • Gender:Female
  • Location:heart in Israel
  • Accordance Version:10.x

Posted 10 April 2014 - 03:00 PM

We are taking care of this as well.


  • Michael J. Bolesta likes this
Helen Brown
OakTree Software

#4 Nathan Parker

Nathan Parker

    Gold

  • Active Members
  • PipPipPipPip
  • 275 posts
  • Gender:Male
  • Location:Hot Springs, Arkansas
  • Accordance Version:10.x

Posted 11 April 2014 - 06:58 PM

Do we need to change our account passwords or are we OK?


Nathan Parker

 

President/CEO

Mallard Computer, Inc.


#5 Tomi

Tomi

    Bronze

  • Active Members
  • PipPip
  • 74 posts
  • Gender:Male
  • Location:Zadar, Croatia
  • Accordance Version:10.x

Posted 12 April 2014 - 07:47 AM

For several hours today it was impossible - at least from this end - to access Accordance web? Was that a part of a regular maintenance or some irregularity? Any reasons to worry ... possible connections to "Hertbleed"? Anyone else had similar problem? As an example, for whatever reason, I still can't access bestcommentaries.com

 

Any words of wisdom from A - team? Thank you.

 

Blessed Palm Sunday to all!


Edited by Tomi, 12 April 2014 - 07:50 AM.

Blessings,
Tomi

#6 JonathanHuber

JonathanHuber

    Platinum

  • Active Members
  • PipPipPipPipPip
  • 734 posts
  • Gender:Male
  • Location:Englewood, CO
  • Interests:Bible study, Greek
  • Accordance Version:10.x

Posted 12 April 2014 - 07:50 AM

The Accordance twitter account said they were doing maintenance on their servers. No reason to worry.



#7 Tomi

Tomi

    Bronze

  • Active Members
  • PipPip
  • 74 posts
  • Gender:Male
  • Location:Zadar, Croatia
  • Accordance Version:10.x

Posted 12 April 2014 - 07:55 AM

Jonathan, thanks a lot for a very fast feedback!


Blessings,
Tomi

#8 Helen Brown

Helen Brown

    Mithril

  • Admin
  • 8,091 posts
  • Gender:Female
  • Location:heart in Israel
  • Accordance Version:10.x

Posted 12 April 2014 - 08:03 AM

Yes, the site is up and running now. There were additional patches applied for Heartbleed, but your data is being kept secure. The techs at each point are having their work cut out for them.


Helen Brown
OakTree Software

#9 Tomi

Tomi

    Bronze

  • Active Members
  • PipPip
  • 74 posts
  • Gender:Male
  • Location:Zadar, Croatia
  • Accordance Version:10.x

Posted 12 April 2014 - 12:09 PM

Excellent news!

 

Thanks Helen & ever hard working A-team.


Blessings,
Tomi

#10 Nathan Parker

Nathan Parker

    Gold

  • Active Members
  • PipPipPipPip
  • 275 posts
  • Gender:Male
  • Location:Hot Springs, Arkansas
  • Accordance Version:10.x

Posted 12 April 2014 - 06:05 PM

Thanks for the updates! Do we need to change any passwords or are we all OK on that end?


Nathan Parker

 

President/CEO

Mallard Computer, Inc.


#11 Helen Brown

Helen Brown

    Mithril

  • Admin
  • 8,091 posts
  • Gender:Female
  • Location:heart in Israel
  • Accordance Version:10.x

Posted 13 April 2014 - 02:38 AM

Since we don't store your credit card information, there's really no need to change your password. If stolen, the most anyone could do is download your modules and order more for you.


  • jakoeshall likes this
Helen Brown
OakTree Software

#12 Steve King

Steve King

    Gold

  • Active Members
  • PipPipPipPip
  • 379 posts
  • Gender:Male
  • Location:Hoddesdon, Hertfordshire, UK
  • Accordance Version:10.x

Posted 13 April 2014 - 01:37 PM

If it is the same password you use for other sites which have more sensitive data then it is those passwords you would want to change once you know they have been patched.



#13 Nathan Parker

Nathan Parker

    Gold

  • Active Members
  • PipPipPipPip
  • 275 posts
  • Gender:Male
  • Location:Hot Springs, Arkansas
  • Accordance Version:10.x

Posted 15 April 2014 - 08:57 PM

Thanks Helen for the info. @Steve, I use randomly generated passwords for each site, so it is harder to crack. So for now I should be OK.

 

If my account was ever compromised, I'd hate for someone to steal access to my resources, but if they did, maybe it'd lead them to the Lord. If they ever did still my account and "purchase" new books for me, at least they'd have access to my wishlist so they know what I want. :-)


Nathan Parker

 

President/CEO

Mallard Computer, Inc.


#14 jakoeshall

jakoeshall

    Member

  • Active Members
  • Pip
  • 11 posts
  • Gender:Male
  • Location:Erfurt
  • Accordance Version:10.x

Posted 18 April 2014 - 05:12 AM

Thanks Helen for the info. @Steve, I use randomly generated passwords for each site, so it is harder to crack. So for now I should be OK.

 

If my account was ever compromised, I'd hate for someone to steal access to my resources, but if they did, maybe it'd lead them to the Lord. If they ever did still my account and "purchase" new books for me, at least they'd have access to my wishlist so they know what I want. :-)

 

Maybe setting the password to "1234" will better lead you to your goal instead of a randomly generated one. :D



#15 Nathan Parker

Nathan Parker

    Gold

  • Active Members
  • PipPipPipPip
  • 275 posts
  • Gender:Male
  • Location:Hot Springs, Arkansas
  • Accordance Version:10.x

Posted 18 April 2014 - 04:50 PM

 

Maybe setting the password to "1234" will better lead you to your goal instead of a randomly generated one. :D

 

Hee hee. True. :-) For now though, I'll just stick with my secure, randomly generated password. At least it feels good to know we're safe from Heartbleed. I sure appreciate Accordance keeping us informed.


Nathan Parker

 

President/CEO

Mallard Computer, Inc.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users