Library update on the Heartbleed bug

You may have recently heard of a computer security vulnerability called Heartbleed that is affecting computer networks around the world. We wanted to provide you with an update on how this vulnerability affects the Library’s services.

We have reviewed the Library's servers and insured that the version of the OpenSSL running is secure and not vulnerable to the Heartbleed bug.

OCLC services, including WorldCat Local, were not affected and there is no need for users who created a WorldCat account to update their passwords at this time.

Should I change my McGill password? McGill IT is in the process of ensuring that various systems in use across the university are secure. Once that has been done, McGill IT will be asking users to update their passwords. But please note: McGill will not send you an email asking you to "click here to change your password".

Should I change my Library Account PIN? The servers running the Classic Catalogue were never affected by this vulnerability so there is no need to change your PIN as a result.

For more information, please visit McGill IT’s Heartbleed vulnerability FAQ.