Skip to Content.
Sympa Menu

perfsonar-announce - Information on the "FREAK" Vulnerability

Subject: perfSONAR Announcements

List archive

Information on the "FREAK" Vulnerability


Chronological Thread 
  • From: Jason Zurawski <>
  • To: perfsonar-user <>, perfsonar-announce <>
  • Cc:
  • Subject: Information on the "FREAK" Vulnerability
  • Date: Fri, 6 Mar 2015 12:46:23 -0500

Greetings All;

Some may be aware the recent announcement regarding the "FREAK”
vulnerability, more information can be found here:

https://community.norton.com/en/blogs/norton-protection-blog/new-freak-vulnerability-can-allow-attackers-decrypt-encrypted


The perfSONAR development team has reviewed the report, and has determined
that there are no risks that require intervention. The changes implemented
after one of the prior vulnerabilities reduced the risk, e.g. disabling the
export ciphers in the mod ssl configuration. As always, keep your systems up
to date by enabling auto-updates or other forms of configuration management.

If anyone has any questions or concerns, please relay them to
.


Thanks;

-jason



  • Information on the "FREAK" Vulnerability, Jason Zurawski, 03/06/2015

Archive powered by MHonArc 2.6.16.

Top of Page