The absolute disgust was going online this morning to see CGHUB no where to be found One of my all time favorite 3D community sites. I read more into heartbleed and I advise the community here to change their passwords on all their major accounts (especially ones that have your credit card information)
This really sucks and I hope to see CGHUB back again soon! It was too good to lose.
Do you think it did this because it found that it may have been compromised and just took precautionary measures because it holds users credit card information? Maybe they did this to be safe and protect their community.
^ This.
lol yea i made a thread about the heartbleed bug, oh well thought it was just me, good to know.
Also i think they are also adding something about a teaching seminar for artists, idk if that was new or old but it was new to me since i've been checking cghub out more often.
It's been working for me all day and still is - I can see people on there posting comments on images a matter of minutes ago!?
I'm in the UK, and everyone else in the office can access it just fine... spooky! I wonder what's happened that so many people here aren't able to get on there?
I could get to the main page, though only text would load. Then I cleared my DNS cache and now I can only get the cghug love with (almost) everyone else.
It's been working for me all day and still is - I can see people on there posting comments on images a matter of minutes ago!?
I'm in the UK, and everyone else in the office can access it just fine... spooky! I wonder what's happened that so many people here aren't able to get on there?
Can we confirm then that all US based users can't go to CGHUB.com but UK/foreign users can? That can start narrowing down the issue. Maybe this heartbleed bug hit the US the hardest? I don't know. No other site I've been on today seems to have this issue.
Can we confirm then that all US based users can't go to CGHUB.com but UK/foreign users can? That can start narrowing down the issue. Maybe this heartbleed bug hit the US the hardest? I don't know. No other site I've been on today seems to have this issue.
Nope. I can spoof originating country, and pretending I was coming from the UK or Australia failed to change anything. Since I didn't feel like going through the whole list of countries, you'll have to content yourself with that.
A missing bounds check in the handling of the TLS heartbeat extension can be
used to reveal up to 64k of memory to a connected client or server.
Only 1.0.1 and 1.0.2-beta releases of OpenSSL are affected including
1.0.1f and 1.0.2-beta1.
Thanks for Neel Mehta of Google Security for discovering this bug and to
Adam Langley <agl@chromium.org> and Bodo Moeller <bmoeller@acm.org> for
preparing the fix.
Affected users should upgrade to OpenSSL 1.0.1g. Users unable to immediately
upgrade can alternatively recompile OpenSSL with -DOPENSSL_NO_HEARTBEATS.
Probably some fallout from the heartbleed. It's a big site so it would be targeted for a hack, which might mean bigger downtime than usual. This could prompt CGHUB to refund paid subs since they don't know when the site will be back online and how much they can save.
Facebook was also confirmed as a vulnerable site.
And no, hearbleed is not the end of the world, it's a very specific OpenSSL vulnerability that leads to encrypted information being leaked, not even unencrypted stuff. Although if you have a crappy password they can break that information more easily.
Not every site uses OpenSSL, a lot of big sites don't.
Otherwise, I don't see a huge site, with a very dedicated community, like CGHUB just packing up and disappearing without some notification or warning prior.
where at? When our IT department first notified the office of the vulnerability we checked the big list of vulnerable sites and it was listed as not vulnerable. The reason everyone is being told to change all of their passwords because personal information & passwords may have been gleaned from a compromised account that could be used to break into your account on a "safe" site.
Replies
http://www.tomsguide.com/us/heartbleed-bug-to-do-list,news-18588.html
This really sucks and I hope to see CGHUB back again soon! It was too good to lose.
lol yea i made a thread about the heartbleed bug, oh well thought it was just me, good to know.
Also i think they are also adding something about a teaching seminar for artists, idk if that was new or old but it was new to me since i've been checking cghub out more often.
Most likely the bug though.
:poly141:
SQL is hacked.
Theres no solution as of now.
The sarcasm is strong in this one. Of course Polycount is a good site, thats why I'm here. Was just looking for other suggestions.
Seems unlikely? Friends who had a pro sub tell me their money has been returned and its Facebook page has vanished...
I mean all encrypted passwords done through SQL are hacked, including gmail/hotmail, all online banking, , paypal, amazon, and all government sites.
Everything is exposed, and there is no fix.
Changing passwords won't change SQL is completely breeched.
I'm in the UK, and everyone else in the office can access it just fine... spooky! I wonder what's happened that so many people here aren't able to get on there?
Can we confirm then that all US based users can't go to CGHUB.com but UK/foreign users can? That can start narrowing down the issue. Maybe this heartbleed bug hit the US the hardest? I don't know. No other site I've been on today seems to have this issue.
sadFace.tif
Hmm, the working site could be explained by Local DNS records not having refreshed, but then ppl are saying the forums have fresh posts 😬
But then there's ppl saying they been refunded for the paid accounts!
The plot thickens...
wut
Down from FL, USA.
Amazon, Paypal and others are not vulnerable
tested site list
there is a fix out, sites need to implement it
OpenSSL Security Advisory [07 Apr 2014]
========================================
TLS heartbeat read overrun (CVE-2014-0160)
==========================================
A missing bounds check in the handling of the TLS heartbeat extension can be
used to reveal up to 64k of memory to a connected client or server.
Only 1.0.1 and 1.0.2-beta releases of OpenSSL are affected including
1.0.1f and 1.0.2-beta1.
Thanks for Neel Mehta of Google Security for discovering this bug and to
Adam Langley <agl@chromium.org> and Bodo Moeller <bmoeller@acm.org> for
preparing the fix.
Affected users should upgrade to OpenSSL 1.0.1g. Users unable to immediately
upgrade can alternatively recompile OpenSSL with -DOPENSSL_NO_HEARTBEATS.
1.0.2 will be fixed in 1.0.2-beta2.
Can't see anything about the "downage" on their forums, but then I don't use their boards and have no clue as to wherethat disscussion might be.
p.s. Polycount is so much easier to browse
http://www.isitdownrightnow.com/cghub.com.html
I checked Facebook and their page is gone, too?
Facebook was also confirmed as a vulnerable site.
And no, hearbleed is not the end of the world, it's a very specific OpenSSL vulnerability that leads to encrypted information being leaked, not even unencrypted stuff. Although if you have a crappy password they can break that information more easily.
Not every site uses OpenSSL, a lot of big sites don't.
Otherwise, I don't see a huge site, with a very dedicated community, like CGHUB just packing up and disappearing without some notification or warning prior.
where at? When our IT department first notified the office of the vulnerability we checked the big list of vulnerable sites and it was listed as not vulnerable. The reason everyone is being told to change all of their passwords because personal information & passwords may have been gleaned from a compromised account that could be used to break into your account on a "safe" site.
doh!
just read this tweet about CGHUB
"Guys, official announcement regarding @CGHUB will come soon. Stay tuned. #CGHUB"
by shakuro . what this shakuro have to do about cghub anyway ?
http://mashable.com/2014/04/09/heartbleed-bug-websites-affected/
https://www.facebook.com/shakurocom/posts/775205905830850
Shakuro is responsable for the cghub app and website!
https://www.facebook.com/shakurocom
Doesn´t really sound like a hug