View Single Post
  #2 (permalink)  
Old 12th April 2014, 06:25 PM
Avtal Avtal is online now
Member
 
Join Date: Jul 2009
Location: The Golden West
Posts: 922
iTrader: (0)
Rep Power: 3246
Avtal is a jewel in the roughAvtal is a jewel in the roughAvtal is a jewel in the roughAvtal is a jewel in the roughAvtal is a jewel in the roughAvtal is a jewel in the roughAvtal is a jewel in the roughAvtal is a jewel in the roughAvtal is a jewel in the roughAvtal is a jewel in the roughAvtal is a jewel in the roughAvtal is a jewel in the rough
Re: Heartbleed vulnerability

Quote:
Originally Posted by Jay View Post
Got an email from 101domain today (below). Any thoughts in relation to other registrars? Should we be concerned?
Dynadot sent out a similar email. General advice (from me, not from necessarily from Dynadot):

1) Change your passwords everywhere, why not?
2) Don't use the same password across multiple sites (yes, it's a pain).
3) Set up two-factor authorization where possible (Dynadot and Namecheap both allow this).
4) If the two-factor authorization is based on sending a text to your cell phone, don't put that phone number in your whois records (if hackers know your number, they'll try to convince your cell phone carrier to forward these texts).
5) The email that registrars use to contact you (to verify password reset requests, for instance) should not be the same as the one in your whois records.

Some good advice from alpha: http://www.idndemystified.com/portfo...curity-101.htm

Avtal
Reply With Quote