1. Home

Product groups

Support

Open SSL 1.1.1 - WeOnlyDo Discussion board

Open SSL 1.1.1 (General questions)

by Mykola Melnyk, Wednesday, May 12, 2021, 11:01 (508 days ago)

Is there some kind of a deadline when WeOnlyDo ActiveX components start supporting OpenSSL 1.1.1
(interested in SFTP, SSH components)?

locked
  2442 views

Open SSL 1.1.1

by wodSupport, Wednesday, May 12, 2021, 21:25 (508 days ago) @ Mykola Melnyk

Hi.

I'm not really sure why you need OpenSSL 1.1.1 for SSH/SFTP, since those protocols have nothing to do with SSL, so TLS1.3 which is major feature of 1.1.1 doesn't apply to SSH protocol. Can you please elaborate why you need OpenSSL 1.1.1?

As for when it will be supported - as soon as FIPS is available as 'drop in' DLL, as it is now with 1.0.2.

Hope this helps!
Jasmine

locked
  2394 views

Open SSL 1.1.1

by Mykola Melnyk, Thursday, May 13, 2021, 09:58 (507 days ago) @ wodSupport

Thank you for your quick response.

Our concern originates from the known list of vulnerabilities in OpenSSL 1.0.x. Numerous customers of our company prefer to consume products based on OpenSSL 1.1.1 even before FIPS support is provided. Though the best solution is still both OpenSSL 1.1.1 and FIPS in one bucket.
As far as we access OpenSSL functionalities mainly through WeOnlyDo libraries that's the reason why I raise the issue.

Thank you

locked
  2376 views

Open SSL 1.1.1

by wodSupport, Thursday, May 13, 2021, 09:59 (507 days ago) @ Mykola Melnyk

Mykola,

hi. Can you point to the list of vulnerability that concern crypto algorithms that are used, not the SSL/TLS layer itself which we don't use? If it's something to be fixed ASAP we'll be happy to know about it.

We'lre also for 1.1.1 (in other products mainly) but FIPS is more important at this time.

Jasmine

locked
  2389 views

Open SSL 1.1.1

by Mykola Melnyk, Thursday, May 13, 2021, 15:44 (507 days ago) @ wodSupport

The first one I have handy:
https://nvd.nist.gov/vuln/detail/CVE-2019-1552

locked
  2394 views

Open SSL 1.1.1

by wodSupport, Thursday, May 13, 2021, 16:03 (507 days ago) @ Mykola Melnyk

Hi.

But, that is for TLS protocol. We don't implement or use SSL/TLS in SSH protocol. We use only OpenSSL's crypto libraries. This doesn't apply in any way to SSH protocol.

Jasmine

locked
  2386 views

Congratulations on an excellent product and first rate support!

Sander Pool
Rhapsody Networks

...I'm extremely impressed with the product, it represents excellent value for money...

Danny Haworth
Assetdisk

We are having great success with your component ... email server that has over 750 000 mailboxes back ended by a SQL server...

Conrad Leigh
Leaf Wireless

The SFTP ocx is one of the finest pieces of programming I have seen. It worked out of the box...

Kenneth R. Robinette
InterSoft International

I can only hope I will have the pleasure to work with other products by "We Only Do" in the future.

Tomer Spivak
Verint Systems Ltd

Thank you for the great customer service ... I am really impressed with the wodSSH ActiveX control.

Andrew Ross
Kiwi Enterprises

Your .NET components allow us to blend .NET technology seamlessly with secure communication, and with excellent technical support.

Bil Bragg
Dionach

We have recently completed a large 1200+ location project where reliable Telnet and SSH connectivity was required. wodSSH worked flawlessly and allowed our staff to complete our project ontime and within budget.

James Sievers
Harbor Technologies

Thank you for the great customer service ... I am really impressed with the wodSSH ActiveX control.

Andrew Ross
Kiwi Enterprises

Thank you so much for your hard work and commitment in producing well thought-out solutions. WeOnlyDo is very committed to customer satisfaction!

Mike McPherson
Nokia Inc.