In response to the recent "Poodle" bug, our team has immediately disabled SSL version 3 on all our servers.
"Poodle" however illustrates another security threat: Encryption methods that once were state of the art, may no longer be secure today. To avoid this problem proactively, we replaced our SSL certificates with new ones and have disabled all encryption algorithms that may be considered weak. (*)
As our new certificate is signed by the same Certificate Authority (CA) as the old one, most users would not notice this change. If however you do not have the Comodo CA certificate installed or have enabled strict checking, please make sure you have the right certificate when your browser or mail client asks for confirmation:
- Issuer: COMODO RSA Domain Validation Secure Server CA
- Valid from: 27.01.2014 01:00:00 (27.01.2014 00:00:00 GMT)
- Valid until: 31.01.2015 00:59:59 (30.01.2015 23:59:59 GMT)
- SHA256 Fingerprint: 14:01:A3:29:C1:06:7C:2F:C5:0B:15:70:A8:69:19:AD:90:D0:09:2A:41:DB:1D:94:BE:0E:03:A7:53:69:79:43
- SHA1 Fingerprint: 45:CA:33:15:ED:01:FD:C4:92:D0:FB:B0:46:56:3F:08:AE:9D:8E:92
For more information about our encryption setup and some general recommendations on staying safe, please refer to our previous news entry about the 'Heartbleed' bug.
MyKolab will continue to install new SSL certificates as necessary for your protection. We are better save than sorry!
(*) Please note that this also means that Internet Explorer 6 and 8 on Windows XP are no longer supported. Windows XP has reached it's end of life in April this year and we strongly recommend to stop using it immediately.