Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 158 replies
  • Subscribers 3 subscribers
  • Views 151104 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Timeline for patching SSL vulnerability (Heartbleed Bug)

strategicdata
Heatbleed Bug (CVE-2014-0160)

Hi

Is there any timeframe for patching this SSL/TLS bug for Astaro Security Gateway V8.
We are on the latest 8.311 (as V8 is an approved appliance for us and V9 is not).

Thanks


Heartbleed Bug
https://news.ycombinator.com/item?id=7548991


This thread was automatically locked due to age.
Parents
  • 0
    What about a action plan?
    (Please add comments)

    1. Install UTM update when released
    2. Renew SSL certificates for UserPortal
    3. Renew SSL certificates for WebAdmin
    4. Renew SSL certificates for reverse proxy (WebServer Protection)
    5. Renew SSL certificates for SSL VPN Client
    6. redistribute SSL VPN Client

    Anything else missing?
  • 0 in reply to StefanMe
    What about a action plan?
    (Please add comments)

    1. Install UTM update when released
    2. Renew SSL certificates for UserPortal
    3. Renew SSL certificates for WebAdmin
    4. Renew SSL certificates for reverse proxy (WebServer Protection)
    5. Renew SSL certificates for SSL VPN Client
    6. redistribute SSL VPN Client

    Anything else missing?


    Actually, I would expect to have already found some instructions from Sophos on how to mitigate, and later on to get instructions on what to do to clean up.
Reply
  • 0 in reply to StefanMe
    What about a action plan?
    (Please add comments)

    1. Install UTM update when released
    2. Renew SSL certificates for UserPortal
    3. Renew SSL certificates for WebAdmin
    4. Renew SSL certificates for reverse proxy (WebServer Protection)
    5. Renew SSL certificates for SSL VPN Client
    6. redistribute SSL VPN Client

    Anything else missing?


    Actually, I would expect to have already found some instructions from Sophos on how to mitigate, and later on to get instructions on what to do to clean up.
Children
No Data
Cookie Information Banner