1. Home

Product groups

Support

Open SSL 1.1.1 - WeOnlyDo Discussion board

Open SSL 1.1.1 (General questions)

by Mykola Melnyk, Wednesday, May 12, 2021, 11:01 (625 days ago)

Is there some kind of a deadline when WeOnlyDo ActiveX components start supporting OpenSSL 1.1.1
(interested in SFTP, SSH components)?

locked
  2746 views

Open SSL 1.1.1

by wodSupport, Wednesday, May 12, 2021, 21:25 (624 days ago) @ Mykola Melnyk

Hi.

I'm not really sure why you need OpenSSL 1.1.1 for SSH/SFTP, since those protocols have nothing to do with SSL, so TLS1.3 which is major feature of 1.1.1 doesn't apply to SSH protocol. Can you please elaborate why you need OpenSSL 1.1.1?

As for when it will be supported - as soon as FIPS is available as 'drop in' DLL, as it is now with 1.0.2.

Hope this helps!
Jasmine

locked
  2698 views

Open SSL 1.1.1

by Mykola Melnyk, Thursday, May 13, 2021, 09:58 (624 days ago) @ wodSupport

Thank you for your quick response.

Our concern originates from the known list of vulnerabilities in OpenSSL 1.0.x. Numerous customers of our company prefer to consume products based on OpenSSL 1.1.1 even before FIPS support is provided. Though the best solution is still both OpenSSL 1.1.1 and FIPS in one bucket.
As far as we access OpenSSL functionalities mainly through WeOnlyDo libraries that's the reason why I raise the issue.

Thank you

locked
  2677 views

Open SSL 1.1.1

by wodSupport, Thursday, May 13, 2021, 09:59 (624 days ago) @ Mykola Melnyk

Mykola,

hi. Can you point to the list of vulnerability that concern crypto algorithms that are used, not the SSL/TLS layer itself which we don't use? If it's something to be fixed ASAP we'll be happy to know about it.

We'lre also for 1.1.1 (in other products mainly) but FIPS is more important at this time.

Jasmine

locked
  2695 views

Open SSL 1.1.1

by Mykola Melnyk, Thursday, May 13, 2021, 15:44 (624 days ago) @ wodSupport

The first one I have handy:
https://nvd.nist.gov/vuln/detail/CVE-2019-1552

locked
  2697 views

Open SSL 1.1.1

by wodSupport, Thursday, May 13, 2021, 16:03 (624 days ago) @ Mykola Melnyk

Hi.

But, that is for TLS protocol. We don't implement or use SSL/TLS in SSH protocol. We use only OpenSSL's crypto libraries. This doesn't apply in any way to SSH protocol.

Jasmine

locked
  2690 views

The people at WeOnlyDo are amazing! ... I always get a super fast response from customer service, and the products are great too. Thanks WeOnlyDo

Jeff Hall
Occupational Health Research

...wodFtpDlx was exactly what I needed, it worked, and it was priced right...

David Keenan
Serengeti Systems Incorporated

Don't be fooled by the cost, it's value and quality far exceeds the price being charged!

Ian D. Mead, author of UltraEdit-32
IDM Computer Solutions

I really like these products - they are consistently first rate!

David Witten
WWR Development, Inc.

Many thanks for your excellent support service. I can see why you have a long list of excellent testimonials on your website.

Martyn Walker
Batmore Technolgies

I really like these products - they are consistently first rate!

David Witten
WWR Development, Inc.

Congratulations on an excellent product and first rate support!

Sander Pool
Rhapsody Networks

...with the SFTP interface you produced, everything was so simple to understand, we were able to start coding almost immediately!

Zack Menendez
Mapframe Corporation

...with the SFTP interface you produced, everything was so simple to understand, we were able to start coding almost immediately!

Zack Menendez
Mapframe Corporation

Fantastic product by the way, it has helped us tremendously on a daily basis. Keep up the good work.

Ben Lewis
Waterson Consulting Ltd.