Here on shawnblanc.net, I use SSL encryption on a few pages related to the membership sign-up and checkout process. Unfortunately, the OpenSSL libraries in use by this site were affected by the Heartbleed bug. If anyone targeted my server to exploit the vulnerability, it would only have affected members.
This is to let you know that my site’s vulnerability to the Heartbleed Bug has been patched.
My hosting provider (Media Temple) proactively updated my server’s OpenSSL libraries on Tuesday night, April 8th. Once I confirmed my site was no longer vulnerable, I had my SSL certificate re-generated.
Additionally, as a precaution for all members, I’ve logged everyone out from the site and changed the salt hashes that WordPress uses. All members will have to log back in to access the Membership section.
When you do log back in, please change your password. This can be done from the “Your Profile” page.
If you have any questions, please feel free to ping me on Twitter or email me.
Thanks,
— Shawn