Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 14 replies
  • Subscribers 1 subscriber
  • Views 3726 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL spoof DIGINOTAR, COMODO - does Astaro remove root certs?

denko2k
Dear All!

referring to the news Microsoft, Google and Mozilla removed root certificates from the Dutch CA “DIGINOTAR”. Also a few weeks ago, root certs from COMODO have been removed.

Google users in Iran targeted in SSL spoof | InSecurity Complex - CNET News

How does Astaro deal with it?

In 
Web Security >> Web Filtering >> HTTPS CAs
does Astaro remove the certs by pattern updates? Do I have to do it myself?
Where can I find official information about how Astaro deals with that problems?


This thread was automatically locked due to age.
Parents
  • 0
    For now it could possibly be best to disable the Diginotar cert at Web Security >> Web Filtering >> HTTPS CAs.  
    does Astaro remove the certs by pattern updates? Do I have to do it myself?  Where can I find official information about how Astaro deals with that problems?
    When Astaro has something to announce, they will probably post here in the forums.
    __________________
    ACE v8/SCA v9.3

    ...still have a v5 install disk in a box somewhere.

    http://xkcd.com
    http://www.tedgoff.com/mb
    http://www.projectcartoon.com/cartoon/1
  • 0 in reply to Scott_Klassen
    Thanks a lot, Scott! I appreciate.

    Yes. It is highly recommended to deactivate this root cert.

    However, it would be interesting to know how Astaro handle such a problem in principle?

    1) Can a pattern update change the root CAs?
    2) Is a firmware update necessary for changes in the root certs?
Reply
  • 0 in reply to Scott_Klassen
    Thanks a lot, Scott! I appreciate.

    Yes. It is highly recommended to deactivate this root cert.

    However, it would be interesting to know how Astaro handle such a problem in principle?

    1) Can a pattern update change the root CAs?
    2) Is a firmware update necessary for changes in the root certs?
Children
No Data
Cookie Information Banner