OngoingWorlds blog

News & articles about play-by-post games, for roleplayers & writers


Heartbleed doesn’t affect OngoingWorlds, don’t panic

A bug. Maybe roleplay monster?Hi everyone, sorry for the potentially boring blog post about web security, so I’m going to make it up to you by telling a joke at the bottom. Some people have asked me today about how vulnerable the OngoingWorlds website is to this Heartbleed SSL bug that has hit the news.

Short answer, you’ll probably be fine.

Long answer, you’re no more at risk than ever really. OngoingWorlds isn’t affected by the bug, but there’s a chance someone could hack another site you’re a member of, and discover your username/password combination. If you’ve used that same combination on OngoingWorlds, someone could login as you. 

This isn’t a new problem though, and could happen at any time. A real security nut will tell you to have a different username/password combination for each site you join. I know that’s not practical (especially if you have a bad memory like me!), but it’s the best way to protect against your accounts getting hacked. So that’s the best recommendation, change your password and keep it unique.

But it’s unlikely this will happen anyway, hackers are normally after credit card details, and we don’t hold anything sensitive like that.

As promised, here’s the joke:

What do you call a psychic midget who has escaped from prison?
A small medium at large.
From: here

I didn’t say it was a very good joke.

  • SMAndy

    It’s ok. Heartbleed doesn’t affect imagination.

  • Mobius64

    I was thinking about asking you about Heartbleed – thanks for reading my mind!

  • Cedrada

    So what is affected? Is there a great, massive list anywhere?

  • Daenelia

    Having different passwords is really not so difficult. I always recommend having different levels of passwords for what you’re using it for. Use really complex ones for sensitive accounts. And learn them by heart. Of course, I know several sonnets by heart, so maybe I just have a good memory… but find the password that sticks with you, and is unique.

    Look at Mashable for a list of affected sites, and update your passwords as needed (when prompted, hopefully)

    (I’d post a link but not sure if suitable. Go to Mashable!)

    • Of course having many passwords is possible, but I can’t remember more than 3, and if a particular site has specific rules that requires more numbers/punctuation etc than normal, I won’t remember so have to write it down – therefore instantly making it less secure!

      • Daenelia

        Only if you carry that piece of paper around with you and carelessly let anyone read it. Unless… You’re not writing it down in a document on your computer desktop, are you? No one is that dense 😛

        Writing down your passwords in a book you keep at home is safer than using simple guessable passwords that do not vary enough. Especially for sensitive matters such as financial transactions.

  • Mrxanadu

    I thought you were about to tell me that Ongoing Worlds was a carrier for some sort of weird pathogen

    • It is. The pathogen for awesomeness.

      • Mrxanadu