Menu
Not logged in  

NEWS ROOM

You are viewing a single news story. You can see more.

2014-04-13 Heartbleed and IPOM Security [link]
Many of you have heard of heartbleed, a vulnerability in SSL, the technology used across the internet to send data securely such as credit card numbers and passwords. IPOM used the affected SSL software (OpenSSL), to protect users logging into the site so your password would always be safe.

We take security very seriously here at IPOM. Our software was updated Tuesday, the same day the vulnerability was announced and updates were available. However, to be truly safe, all keys need to be regenerated, and it took a few days working with our Certificate Authority to get new certificates. As of Thursday evening all new keys and certificates were deployed. If you have an account with IPOM for a Personal Tour Report, we highly recommend you change your password.

While re-visiting security, we also decided to enforce a higher quality of encryption on the secure parts of the site in order to better protect users. Unfortunately this means we had to drop support for IE 6. We officially stopped supporting IE6 quite a while ago, but it mostly meant things might not look right for IE6 users; now they will be unable to log in. While we work hard to support as many platforms and browsers as possible, IE6 is nearly 13 years old and is no longer supported by Microsoft. We feel that lowering security for the larger internet is not worth supporting IE6. With Windows XP no longer being supported by Microsoft either, we will drop support for IE7 and IE8 before 2015.

If you want to learn more about heartbleed and how you can protect yourself, you can see a write-up from your webmaster, or two other user-friendly guides here and here.



There was 1 match

If you have any questions or comments, please e-mail us at webmaster@ipom.com.




© 1997 - present Phil Dibowitz
Please read our Copyright Info