contents

software
 
Comodo Offers Free SSL Certificates to Individuals Affected by Debian Vulnerability Flaw

Comodo announces today that it would offer free SSL certificates to any online businesses affected by the security flaw recently detected in Debian - the LINUX distribution. While Comodo stressed that the SSL certificates it issued are not vulnerable (it is the private keys generated by the users that may be vulnerable), it is offering assistance to Comodo customers as well as to anyone using a competitive SSL certificate from VeriSign or others by offering a new SSL certificate free of charge.

The security flaw (discovered last week) affects OpenSSL in Debian versions of the Linux operating system. The security flaw allows brute forcing of vulnerable keys and could lead to a compromise of secure communications using the keys. To support and assist affected merchants in their efforts to remedy the problem, Comodo is offering free replacement certificates for any certificate that may have been compromised, even if the original certificate was provided by another company.

Affected users are advised to replace their certificates in order to ensure the security of their sensitive data including passwords, financial accounts, credit card numbers, and identities. Comodo customers can log into their accounts and replace their certificates with a new CSR (Certificate Signing Request). Customers should update the OpenSSL package to the latest version, create a new CSR and key pair then proceed to replace the affected certificate. Non Comodo customers can visit this page. to get the free certificate. Other security information regarding this vulnerability can be viewed here.



write your comments about the article :: © 2008 Computing News :: home page