How to check if your server is vulnerable to Heartbleed
How do you know if your server and/or SSL is vulnerable to the heartbleed OpenSSL flaw, and more importantly, how do you check if your server is vulnerable to heartbleed? The heartbleed flaw in OpenSSL has the world in a panic about the security of their passwords and information. The heartbleed vulnerability refers to a security concern of the OpenSSL library, which is popular open source cryptographic software library used in server security. The flaw in the security allows hackers to access sensitive information on the server, via the memory, and leaves absolutely no trace that the hacker was ever there.
So for peace of mind, how can you check if your server is vulnerable to the heartbleed flaw? The first thing to do is contact your hosting company of server admin. They’ll be able to tell you if your server is vulnerable to the heartbleed flaw, and if so, what they’re doing to patch it. However, sometimes it can take days before you receive a response, and you don’t want to be waiting on edge for potential bad news.
GeoTrust has provided a tool for free, that allows you to check your SSL certificate and server to see if it is vulnerable to the heartbleed OpenSSL flaw.
Stephen
March 12, 2015 at 8:00 pmHas the heartbleed issue been resolved? I have heard nothing more since that first kerfuffle, and nothing about whether a fix has been found. Can you enlighten me?
Ronnie
May 1, 2015 at 10:15 pmHi Stephen, the heartbleed issue was resolved last year, all major hosting companies were quick to patch their servers!