login about faq

Hello,

I would like to know if Tectia SSH 6.4.6 is affected by the OpenSSL vulnerability described in here

Thanks, Mario

asked Apr 09 '14 at 12:58

Computerhsharede's gravatar image

Computerhsharede
1222

edited Apr 09 '14 at 14:33

Roman's gravatar image

Roman ♦♦
7735817


Tectia products are not affected - the current Server and Client versions use OpenSSL 0.9.8.

Tectia Manager uses our own TLS Library not based on OpenSSL. The agent does not use OpenSSL.

link

answered Apr 09 '14 at 19:57

Joe%20-%20Tectia%20Support's gravatar image

Joe - Tectia Support ♦♦
51714

Thank you for answering this.

(Apr 10 '14 at 02:06) Matt Matt's gravatar image

Apart from that, Client, Server, ConnectSecure, and MFT Events do not really use TLS at all.

OpenSSL is used only to implement FIPS encryption mode and Tectia uses only cryptographic operations from this library (those are listed in documentation). Therefore, Tectia Client/Server/ConnectSecure/Events could not be affected by this vulnerability at all. Furthermore, it will not be affected by any future vulnerability in implementation of TLS in OpenSSL.

(Apr 10 '14 at 10:55) Martin Dobsik ♦ Martin%20Dobsik's gravatar image
Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or __italic__
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Tags:

×3
×2

Asked: Apr 09 '14 at 12:58

Seen: 6,172 times

Last updated: Apr 10 '14 at 11:30

All user contributed content licensed under the cc-by-sa license.
Powered by OSQA.