WebCrossing Server Security Upgrade

Posted by on Mar 26, 2019 | No Comments

We always try to stay on top of security! This new version includes the latest SSL security upgrades, and ensures we maintain our “A” rating from testing sites, such as SSL Labs.

Specifically, the new upgrade deals with these previously known issues: Timing vulnerability in DSA signature generation; Timing vulnerability in ECDSA signature generation; Fixed a bug in DTLS over SCTP which broke interoperability with older versions of OpenSSL like OpenSSL 1.1.0 and OpenSSL 1.0.2; Changed the info callback signals for the start and end of a post-handshake message exchange in TLSv1.3; 

If you are interested in using SSL encryption for the security of your site we recommend this upgrade.

The latest release version is now WebCrossing 6.4-1349 2019-03-19.

All self-hosted customers with valid support and maintenance contracts can download this new version at no cost.

If you are a self-hosted customer and have a valid support and maintenance contract, please contact support for access to the new server. If your support and maintenance contract has expired, please contact us to renew so we can provide you with this important update.