Azure safe from #Heartbleed

14 04 2014

heartbleed For those of you running secure web sites on the Azure platform you may wonder are you safe? Generally the answer is yes because “Microsoft Azure Web Sites, Microsoft Azure Pack Web Sites and Microsoft Azure Web Roles do not use OpenSSL to terminate SSL connections”.

However “OpenSSL is a common library on Linux for providing encryption functionality. Customers running Linux images in Azure Virtual Machines, or software which uses OpenSSL, may be vulnerable”.

For more information see: http://blogs.msdn.com/b/windowsazure/archive/2014/04/09/information-on-microsoft-azure-and-heartbleed.aspx

Also the LastPass site has a useful blog: http://blog.lastpass.com/2014/04/lastpass-and-heartbleed-bug.html and also a SSL checker https://lastpass.com/heartbleed/

Actions

Information

Date : 2014/04/14
Tags: heart bleed, Heartbleed, Linux, OpenSSL, SSL
Categories : Technology

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Address never made public)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Cancel

Connecting to %s

SharePoint Randy