Heartbleed OpenSSL - looksoftware for IBM i

Posted by Vas Mintzikos on May 1, 2014 8:30:51 PM

   

Many of you have heard the discussions and somewhat panic, surrounding the Heartbleed security scare.

ibm_power_795-front-on-adobe-logo-heartbleedTherefore we thought a quick message to you all would ease those sleepless nights ;)

So, does the Heartbleed OpenSSL security flaw impact looksoftware’s products for your IBM i?

looksoftware’s development tools and deployment products are not impacted by the Heartbleed OpenSSL security flaw.

IIS, which is used for lookserver deployment, does not, by default, utilize OpenSSL and is not impacted. Further information on IIS can be found here :

http://blogs.technet.com/b/erezs_iis_blog/archive/2014/04/09/information-about-heartbleed-and-iis.aspx 

When deploying CAB files for smartclient deployment the third party web server utilized (e.g. Apache) may be configured with OpenSSL and may therefore be vulnerable. We suggest contacting the vendor of your web server to identify if you are affected and implement suggested actions.

For more on the Heartbleed issue, click here for more info: http://heartbleed.com/ 

We hope this helps. Any questions please contact us at support@looksoftware.com.


Vas Mintzikos
Author

Vas Mintzikos
Support Manager, looksoftware

 

Topics: IBM i