bug and FP Haskell Center
If you haven't heard about the heartbleed bug and related
security issues, this
article provides a good explanation.
Applications developed in FPHC and deployed using the FP
Application servers are not vulnerable to this bug.
Services we use from Amazon and GitHub were affected. SSL
connections to our servers go through Amazon software, and we use
SSL to connect to GitHub repositories. Both Amazon and GitHub have
already updated their services to remove the vulnerability. FP
Complete has followed GitHub's suggestions by changing our
passwords and OAuth tokens. You can read those
guidelines at github.
While we have no evidence that any sensitive information was
leaked from FPHC, we recommend changing your password for FPHC as
soon as possible, just in case.
Other measures to increase security never hurt. Things like
using two-factor authentication on sites for which it is available,
and using password locker software that will generate strong
passwords unique to each site, will help prevent people breaking
into your accounts. This event provides a good time to consider
adding these extra security measures if you aren't already using
Do you like this blog post and need help with DevOps, Rust or functional programming? Contact us.