Announcement

Collapse
No announcement yet.

Heartbleed bug

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Heartbleed bug

    I believe 3Dcart runs on the impacted technology stack. If so, has the patch been applied?

    Would love to hear from 3dCart on this asap.

    Jeff
    http://www.zolex-handcleaner.com

  • #2
    https://support.3dcart.com/index.php...wsItem/View/79

    Comment


    • #3
      3dcart merchants can be confident that their 3dcart stores are completely safe from the Heartbleed bug.

      The 3dcart platform is not vulnerable to the Heartbleed bug. We don’t use open SSL and our operating systems are not mentioned on the vulnerable ones.

      While many other ecommerce providers are being affected, 3dcart was never vulnerable to this security issue, so no additional measures were required.

      Comment


      • #4
        Are any of you sending an email to users to inform them that we AREN'T affected? Seems like an excellent marketing opportunity.

        Comment


        • #5
          https://www.ssllabs.com/ssltest/

          That was posted last night on a seller forum that I peruse. My grade was reduced to A- because:

          RC4 cipher is used with TLS 1.1 or newer protocols, even though stronger ciphers are available. Grade reduced to A-.

          The server does not support Forward Secrecy with the reference browsers. Grade reduced to A-.

          Otherwise: This server is not vulnerable to the Heartbleed attack.

          Comment


          • #6
            Good hear.

            Thanks.

            Jeff
            http://www.zolex-handcleaner.com

            Comment


            • #7
              Originally posted by Toobusy View Post
              https://www.ssllabs.com/ssltest/

              That was posted last night on a seller forum that I peruse. My grade was reduced to A- because:

              RC4 cipher is used with TLS 1.1 or newer protocols, even though stronger ciphers are available. Grade reduced to A-.

              The server does not support Forward Secrecy with the reference browsers. Grade reduced to A-.

              Otherwise: This server is not vulnerable to the Heartbleed attack.
              Nice find. Thanks for taking the time to post this. I went to the URL and ran this test on our domain. Results were exactly the same.

              Comment

              Working...
              X