Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 1 subscriber
  • Views 3515 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL-VPN and SSL/TLS Vulnerability

T.Frank
Hi,

does the new vulnerability from SSL/TLS have impacts for the SSL-VPN Connection with the ASG?

Source:
Vulnerability in SSL/TLS protocol - The H Security: News and Features

Best Regards,
Tobias Frank


This thread was automatically locked due to age.
Parents
  • 0
    I'm not sure either, but there is a partial 'fix' in a new version of OpenSSL, which completely disables renegotiation:
    Internet Storm Center Diary 2009-11-06

    I don't know if the VPN package (OpenVPN or whatever Astaro is using) would have to be 'fixed' too, or if the new OpenSSL would be enough.

    Note also that even if Astaro doesn't fix this right away, fixing the clients might be sufficient. (assuming that it is even an issue with OpenVPN)

    Barry
Reply
  • 0
    I'm not sure either, but there is a partial 'fix' in a new version of OpenSSL, which completely disables renegotiation:
    Internet Storm Center Diary 2009-11-06

    I don't know if the VPN package (OpenVPN or whatever Astaro is using) would have to be 'fixed' too, or if the new OpenSSL would be enough.

    Note also that even if Astaro doesn't fix this right away, fixing the clients might be sufficient. (assuming that it is even an issue with OpenVPN)

    Barry
Children
No Data