Bitcoin Forum>Bitcoin>Bitcoin Technical Support
Author

Topic: hearbleed, do I have to change my password for my wallet file? (Read 1035 times)

cp1
hero member
Activity: 616
Merit: 500
Stop using branwallets
hearbleed, do I have to change my password for my wallet file?
April 17, 2014, 04:13:52 PM
#5
Quote from: DannyHamilton on April 09, 2014, 05:43:03 PM
Quote from: ajk on April 09, 2014, 04:44:16 PM
Hi

just wondering if heartbleed is any cause for concern regarding changing my wallets current password, I have never used the 0.9.0 client still on version 0.8.6

will downloading the newest version 0.9.1 fix any of the data leaking concerns/possible theft of bitcoin?

thanks

Since you are running a version older than 0.9.0, you are only at risk if you are running the rpcssl command line option, or have entered that option into your bitcoin.conf.

If you don't know what that is, then you are almost certainly not using it, and therefore don't have to worry about your Bitcoin-Qt being affected by the Heartbleed bug.



You'd also have to have that port open to the world.  Though if you had any port using openssl open to the world then you were vulnerable.
freedomno1
legendary
Activity: 1806
Merit: 1090
Learning the troll avoidance button :)
Re: hearbleed, do I have to change my password for my wallet file?
April 09, 2014, 07:53:26 PM
#4
Quote from: Dare on April 09, 2014, 07:46:36 PM
Quote from: DannyHamilton on April 09, 2014, 05:43:03 PM
Quote from: ajk on April 09, 2014, 04:44:16 PM
Hi

just wondering if heartbleed is any cause for concern regarding changing my wallets current password, I have never used the 0.9.0 client still on version 0.8.6

will downloading the newest version 0.9.1 fix any of the data leaking concerns/possible theft of bitcoin?

thanks

Since you are running a version older than 0.9.0, you are only at risk if you are running the rpcssl command line option, or have entered that option into your bitcoin.conf.

If you don't know what that is, then you are almost certainly not using it, and therefore don't have to worry about your Bitcoin-Qt being affected by the Heartbleed bug.

While this is true, updating to 0.9.1 (which fixes the Heartbleed bug, and is safe) wouldn't be a bad idea. The official announcement (which is currently also in the news section of the forum header) can be found here.

I agree having the newest software is always useful, on the rare occasion 0.9.0 that may be a bit of a problem but updating the QT client now and then is important only a few more to go till we hit 1.0 hehe
Dare
hero member
Activity: 508
Merit: 500
Techwolf on #bitcoin and Reddit
Re: hearbleed, do I have to change my password for my wallet file?
April 09, 2014, 07:46:36 PM
#3
Quote from: DannyHamilton on April 09, 2014, 05:43:03 PM
Quote from: ajk on April 09, 2014, 04:44:16 PM
Hi

just wondering if heartbleed is any cause for concern regarding changing my wallets current password, I have never used the 0.9.0 client still on version 0.8.6

will downloading the newest version 0.9.1 fix any of the data leaking concerns/possible theft of bitcoin?

thanks

Since you are running a version older than 0.9.0, you are only at risk if you are running the rpcssl command line option, or have entered that option into your bitcoin.conf.

If you don't know what that is, then you are almost certainly not using it, and therefore don't have to worry about your Bitcoin-Qt being affected by the Heartbleed bug.

While this is true, updating to 0.9.1 (which fixes the Heartbleed bug, and is safe) wouldn't be a bad idea. The official announcement (which is currently also in the news section of the forum header) can be found here.
DannyHamilton
legendary
Activity: 3388
Merit: 4615
Re: hearbleed, do I have to change my password for my wallet file?
April 09, 2014, 05:43:03 PM
#2
Quote from: ajk on April 09, 2014, 04:44:16 PM
Hi

just wondering if heartbleed is any cause for concern regarding changing my wallets current password, I have never used the 0.9.0 client still on version 0.8.6

will downloading the newest version 0.9.1 fix any of the data leaking concerns/possible theft of bitcoin?

thanks

Since you are running a version older than 0.9.0, you are only at risk if you are running the rpcssl command line option, or have entered that option into your bitcoin.conf.

If you don't know what that is, then you are almost certainly not using it, and therefore don't have to worry about your Bitcoin-Qt being affected by the Heartbleed bug.

ajk
donator
Activity: 447
Merit: 250
Re: hearbleed, do I have to change my password for my wallet file?
April 09, 2014, 04:44:16 PM
#1
Hi

just wondering if heartbleed is any cause for concern regarding changing my wallets current password, I have never used the 0.9.0 client still on version 0.8.6

will downloading the newest version 0.9.1 fix any of the data leaking concerns/possible theft of bitcoin?

thanks
Bitcoin Forum>Bitcoin>Bitcoin Technical Support
Jump to: