Anúncios
31
Dec
2025
[SSL/TLS] Sectigo end legacy chain
After December 31, 2025 Sectigo will no longer re-issue certificate under old chain. This mainly impacts Microsoft server environments where some end users are on very old devices that do not trust Sectigo’s newer root. In these cases, Microsoft may not honor cross-signed chain workarounds if a s ...
31
Dec
2025
[SSL/TLS] DigiCert moved to 199 days maximum validity
On December 24, 2026 igiCert will stop accepting public TLS certificate requests with a validity greater than 199 days. All public TLS certificates issued on or after February 24, 2026, cannot exceed the new 199-day maximum validity. This change affects all DigiCert public TLS ...
01
Sep
2021
[SSL/TLS] Domain validation policy changes in 2021
Regards on Mozilla and CA/B Forum-backed domain validation policies change will be implementd on end of September 2021 and take effect November 15, 2021. These policy changes apply to all new certificate requests, renewals, reissues and pre-validated domains. These changes won’t affect TLS/SSL cer ...
25
Nov
2016
[Security] Server virus scan engine improved
There are tons of malware messages each day, to keep our clients clean. Today our e-mail servers are better catching malware and spam message with new scan engine and latest pattern signatures. This help your system clean and you can focus on really needed message.
03
May
2016
[Security] Padding Oracle Attack
Today, OpenSSL published security advisory Padding Oracle Attack (CVE-2016-2107) a high-serverity flaw. This security flaw allows a man-in-the-middle (MITM) attacker to initiate Paddin Oracle Attack that can decrypt HTTPS traffic with AES-CBC cipher.
08
Mar
2016
[Security] DROWN vulnerability
DROWN (Decrypting RSA with Obsolete and Weakened eNcryption) vulnerability (CVE-2016-0800) is cross-protocol attack that uses SSLv2 handshakes to decrypt TLS sessions. DROWN allows attackers to break the encryption and read or steal sensitive communications, including passwords, credit ...
09
Apr
2014
[Security] Heartbleed vulnerability
You have probably heard about the "Heartbleed" security issue that was discovered earlier this week. This is major security bug in the popular OpenSSL cryptographic software library. When we were aware of this issue, we took immediate action to resolute this issue. As of now, we do not see any ...