I’m going to freak out if I hear about another security vulnerability in SSL…. Too late! Watch today’s episode to see whether or not you should freak about the FREAK SSL flaw.
(Episode Runtime: 2:17)
Direct YouTube Link: https://www.youtube.com/watch?v=ps3a7U0TOvo
WatchGuard customers might be curious if our products are affected by FREAK. Probably not! As far as our engineers have found, we do not enable the RSA_EXPORT cipher suite in our SSL implementations. We’re continuing to check to be sure, but so far we don’t appear to be affected by FREAK.
EPISODE REFERENCES:
- Official FREAK page and description – Freakattack
- CVE listing for FREAK vulnerability – Mitre
- Good Ars Technica write-up on the FREAK flaw – Ars Technica