This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL spoof DIGINOTAR, COMODO - does Astaro remove root certs?

Dear All!

referring to the news Microsoft, Google and Mozilla removed root certificates from the Dutch CA “DIGINOTAR”. Also a few weeks ago, root certs from COMODO have been removed.

Google users in Iran targeted in SSL spoof | InSecurity Complex - CNET News

How does Astaro deal with it?

In
Web Security >> Web Filtering >> HTTPS CAs
does Astaro remove the certs by pattern updates? Do I have to do it myself?
Where can I find official information about how Astaro deals with that problems?

This thread was automatically locked due to age.

Parents

0 Alvin over 14 years ago

One thing just came to my mind.

If I do not use HTTP[S] Proxy, I only use HTTP Proxy, this would not affect me right?

Reason I do not use HTTPS is because it makes the browser not showing the extremely green secured bar and that disturbs my users at home.
Cancel
Vote Up 0 Vote Down

Cancel
0 Alvin over 14 years ago in reply to Alvin

Just to confirm this is the only one to Disable.

Web Filtering -> HTTPS CAs

[Disabled] DigiNotar DigiNotar Root CA

Personally I think Astaro should put up a announcement they know about this, a fix is scheduled on ******.... Mean time do the following counter measures.....
Cancel
Vote Up 0 Vote Down

Cancel
0 wingman over 14 years ago in reply to Alvin

Just to confirm this is the only one to Disable.

Web Filtering -> HTTPS CAs

[Disabled] DigiNotar DigiNotar Root CA

That is correct
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 wingman over 14 years ago in reply to Alvin

Just to confirm this is the only one to Disable.

Web Filtering -> HTTPS CAs

[Disabled] DigiNotar DigiNotar Root CA

That is correct
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data