Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 2 subscribers
  • Views 2471 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Ssl ddos

Admin Öpag
hmm, doesn't sound too good:
heise online - Neues Denial-of-Service-Tool legt verschlüsselnde Server lahm

So there is a tool which can ddos every system that negotiates ssl-keys.
I suppose someone could "kill" an astaro the same way, didn't test it so far, but is there a way to deactivate key renegotiation and will this have any bad side effects?

Is there an official Astaro Statement?

ng, Berndt


This thread was automatically locked due to age.
Parents
  • 0
    About two years ago, we discusssed the potential for this vulnerability in the SSL VPN, but the problem already had been addressed.

    I'd be surprised if the reverse proxy allowed SSL renegotiation.  Until there's a different methodology, it looks like that's the best protection available.

    Cheers - Bob
Reply
  • 0
    About two years ago, we discusssed the potential for this vulnerability in the SSL VPN, but the problem already had been addressed.

    I'd be surprised if the reverse proxy allowed SSL renegotiation.  Until there's a different methodology, it looks like that's the best protection available.

    Cheers - Bob
Children
No Data