This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL spoof DIGINOTAR, COMODO - does Astaro remove root certs?

Dear All!

referring to the news Microsoft, Google and Mozilla removed root certificates from the Dutch CA “DIGINOTAR”. Also a few weeks ago, root certs from COMODO have been removed.

Google users in Iran targeted in SSL spoof | InSecurity Complex - CNET News

How does Astaro deal with it?

In
Web Security >> Web Filtering >> HTTPS CAs
does Astaro remove the certs by pattern updates? Do I have to do it myself?
Where can I find official information about how Astaro deals with that problems?

This thread was automatically locked due to age.

Parents

0 trollvottel over 14 years ago

In v8.202 the DigiNotar CA will be removed from the trusted HTTPS CAs.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 trollvottel over 14 years ago

In v8.202 the DigiNotar CA will be removed from the trusted HTTPS CAs.
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 BrucekConvergent over 14 years ago in reply to trollvottel

In v8.202 the DigiNotar CA will be removed from the trusted HTTPS CAs.

Any plans in making the removal of a known bad CA part of the pattern up2date process, so the lag time (and manual process required) involved in using a firmware up2date is eliminated?

CTO, Convergent Information Security Solutions, LLC

https://www.convergesecurity.com

Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries. Use the advice given at your own risk.
Cancel
Vote Up 0 Vote Down

Cancel
0 Alvin over 14 years ago in reply to BrucekConvergent

When is 8.202 schedueld for GA?

In the mean time, Astaro wont post some counter measures for savvy people to do Manually?
Cancel
Vote Up 0 Vote Down

Cancel