I read it a few days ago and sent it off to family members..

so it wouldn't do a crook any good to compromise my password. My bank is Bank of America which is safe.

This was extremely helpful and a great example of the BEST of DU. K&R

If a couple of my accounts show up on the list (facebook, g-mail, yahoo), but I used unique passwords (from any other accounts I have) and transact no business on those accounts, how at risk am I ... and for what?

IOWs, what can someone do if they get a hold to my facebook pass word ... other than post bogus stuff to my wall?

and you transact no business on yahoo/gmail/facebook....then it's not a real big deal. As long as you're "firewalled" off from your important accounts and important sites, you're safe. I'm assuming you have no information on any of those accounts that is sensitive/personal.

you're gonna have to explain stuff really slowly for this 'puter non-geek.

I only access facebook via my phone and have never used yahoo or gmail (except yahoosports) on the computer where I do my online banking.

Problem/No Problem.

Facebook, just make sure you don't care what they do to your account. For example, some idiot could start posting vile homophobic stuff on your wall. Not good at all. Personally, I would change your facebook password. It's up to you.

and possibly get you in hot water!

Mrs. 1SBM rarely does facebook.

since then I use numbers etc in my password, it's pretty secure now ... THANKS for posting this!

Curious that.



Thank you for the post !!!

& Rec !!!

Look at it this way:

Let's say, oh, Bank of America had been using Open SSL and accounts had been compromised. If anything, many many accounts would have been compromised. It would become public knowledge pretty fast, whether BOA liked it or not. Yes, BOA could lie their ass off about it, but people would trust them even less than they do now. It's in their best interest to be frank about it, admit it, patch it, warn customers, and move on.

If it comes out in the media/social media that a financial institution was compromised and withheld that info, then I'll be one of the first to acknowledge my naivete.

Financial sites have competent IT departments, generally. I'm sure credit unions are not throwing security to the winds. Yahoo doesn't know its front from its back.

You are a gentleman and a scholar.

I really hate bugs and viruses.

Back out of there.

That's some ****ed up security stuff.

That is on my list of things to do this week on vacation.

Thinking of using "Password1234" as my new passwords for everything.