Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 10 replies
  • Subscribers 2 subscribers
  • Views 2922 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Heartbleed IPS rules found here

SalishSwede
If my memory serves me, once upon a time, Astaro allowed the creation of customer rules for the IPS.  No more.

This link contains the details of IPS rules for Heartbleed. 
Can we please get this implemented ASAP.

And can we open back up the ability to manage/create custom rules?

Heartbleed OpenSSL vulnerability: A technical remediation


This thread was automatically locked due to age.
Parents
  • 0
    Thomas if you've Up2Dated to 9.111 or 9.201, those won't be necessary.  I'm sure it was all-hands-on-deck to get OpenSSL 1.1g added into those versions to eliminate the vulnerability.  The only reason to want the new Snort rules would be because you're DNATting public traffic to a web server that hasn't been patched.

    Cheers - Bob
Reply
  • 0
    Thomas if you've Up2Dated to 9.111 or 9.201, those won't be necessary.  I'm sure it was all-hands-on-deck to get OpenSSL 1.1g added into those versions to eliminate the vulnerability.  The only reason to want the new Snort rules would be because you're DNATting public traffic to a web server that hasn't been patched.

    Cheers - Bob
Children
No Data