Filter by Category

What GoAnywhere Customers Should Know About LogJam

Logjam"LogJam Computer Bug Could Wreak Havoc" - USA Today

"A Frightening New Vulnerability Could Let Hackers Bypass The One Thing That Keeps Us Safe Online" - Business Insider

"FREAK-like LogJam Attack Undermines TLS Security" Infosecurity Magazine

"Enterprise, Cloud Services Exposed as Vulnerable to LogJam" - ZDnet

With frightening headlines appearing last week in various news outlets around the world, it's no wonder people are paying attention to the Diffie-Hellman key exchange attack also known as LogJam. The extremely popular Diffie-Hellman key exchange algorithm allows Internet protocols to negotiate secure connections using shared keys and is integral to protocols such as HTTPS, SMTPS, IPsec and those reliant on TLS.  LogJam exploits a flaw that could allow eavesdropping and data manipulation on affected HTTPS websites.

GoAnywhere Not Vulnerable to LogJam Attack on SSL/TLS. GoAnywhere Services relies on the JSSE provider for handling SSL/TLS handshake operations. If configured properly, GoAnywhere is not vulnerable to the SSL/TLS Diffie Hellman key exchange attack known as LogJam.

To avoid this attack in GoAnywhere, configure your HTTPS/AS2, FTP, and FTPS Services to only enable cipher suites that utilize the Elliptic Curve DH key exchange algorithms.

For any GoAnywhere customers who have concerns or need assistance in ensuring their system is configured properly, our dedicated Support Team is always available to help. There are several convenient ways to connect with us. You can learn more on our Customer Support page at GoAnywhere.com.

 

Add a Comment

Allowed tags: <b><i><br>

Latest Posts


What is FTPS?

December 4, 2018

Whether you’re looking to upgrade from your current FTP file transfers or have new requirements from a trading partner or customer, you might be wondering what FTPS is. How does it work, you…


Need an Alternative to AMRDEC SAFE’s File Service? Start Here

November 29, 2018

AMRDEC SAFE Shut Down Due to Security Issues Bad news for the U.S. army: AMRDEC SAFE, the Army Aviation and Missile Research Development and Engineering Center Safe Access File Exchange service that…


How 3 Financial Institutions Solve File Transfer Needs with MFT Software

November 26, 2018

On a scale of 1-10, how would you rate the efficiency of your file transfers right now? If you use manual scripts, legacy software, or a myriad of free tools to balance your encryption, automation,…


Recent 2018 Data Breaches in Healthcare (and How to Avoid Them)

November 14, 2018

Phishing attacks, malware, and employee errors. These are three of the most recent causes for healthcare data breaches in 2018, with more certainly to come. The year isn’t over yet. For anyone…


Which is Better: SFTP vs. MFT?

November 6, 2018

SFTP, or MFT: that is the question. Even though we’re not all famous poets like William Shakespeare, many IT professionals will ask this question at some point or another. Should they use an…