[23-Mar-2024 11:34:42 UTC] PHP Fatal error: Trait 'AAM_Core_Contract_RequestTrait' not found in /home/xhtmljunkies/public_html/wp-content/plugins/advanced-access-manager/application/Service/Uri.php on line 24 [23-Mar-2024 17:22:13 UTC] PHP Fatal error: Trait 'AAM_Core_Contract_RequestTrait' not found in /home/xhtmljunkies/public_html/wp-content/plugins/advanced-access-manager/application/Service/Toolbar.php on line 22 [26-Mar-2024 13:29:00 UTC] PHP Fatal error: Trait 'AAM_Core_Contract_ServiceTrait' not found in /home/xhtmljunkies/public_html/wp-content/plugins/advanced-access-manager/application/Service/Shortcode.php on line 19 [07-Apr-2024 20:50:03 UTC] PHP Fatal error: Trait 'AAM_Core_Contract_SingletonTrait' not found in /home/xhtmljunkies/public_html/wp-content/plugins/advanced-access-manager/application/Service/Compatibility.php on line 21 How to protect Magento stores from Heartbleed Bug | Xhtmljunkies

7 May 2014

How to protect Magento stores from Heartbleed Bug

1. About the bug:
Heartbleed is server software (OpenSSL) bug so it’s more like a server vulnerability. Most of the webserver use OpenSSL extension to manage the secured connection.
Heartbleed opened your openSSL memory to the public, this means, everybody was able to read upto 16kb chunks of your memory.
This memory holds:
a) Private keys
b) Request data
c) Response data

2.Am I infected?
Here is the link to check if your server is affected:

http://filippo.io/Heartbleed
http://possible.lv/tools/hb
https://heartbleed.hostgator.com

3.Our Advice?
The fix is:
a) Upgrade OpenSSL to the newer version (OpenSSL 1.0.1g and above).
b) Change all passwords: Attackers may be able to read the password and username, therefore resetting the passwords for all users is suggested.
c )Change the private key: Changing your magento private key is must for every store owner.

4.If you are an ecommerce solution provider.
You must mail your Magento customers and ask them to perform the above fix

Author: Harshal Shah

Harshal Shah is CEO & Founder of Xhtmljunkies, Located in Gujarat, India, XHTML Junkies is one of the best companies that offer unique eCommerce solutions by the virtue of its dedicated professionals. Our professionals are extremely proficient in offering development services pertaining to eCommerce. You can find Harshal on Google+ and Twitter.

Bio
Latest Posts

Harshal Shah

Harshal Shah is CEO & Founder of Xhtmljunkies, Located in Gujarat, India, XHTML Junkies is one of the best companies that offer unique eCommerce solutions by the virtue of its dedicated professionals. Our professionals are extremely proficient in offering development services pertaining to eCommerce. You can find Harshal on Google+ and Twitter.

Latest posts by Harshal Shah (see all)

Latest Social Media Marketing Trends For 2022 - 10,Feb,2022
Microsoft Will Apply IFGICT Cybersecurity Standard By 2023 - 22,Nov,2021
Top 7 elements that influence eCommerce application - 17,Dec,2019

Video Testimonial

Home

Dedicated Resources

Content Management

Web Design

Conversion Services

©Copyright 2006 - 2019 All rights reserved by

Trusted Since 2006

37200 Paseo Padre, Pkwy #421, Fremont,
CA 94536, USA

15/12 Clifton street, Blacktown,
NSW 2148 AUSTRALIA

305, Iskon center, Shivranjani cross road,
Satellite, Ahmedabad.380015