Web and Unmanaged
cancel
Showing results for 
Search instead for 
Did you mean: 

"Logjam" fix for HP1810

loopway
Occasional Visitor

"Logjam" fix for HP1810

Hello all

I'm using an hp1810 switch and couldn't find any newer firmware than the following:

HP 1810-24G, PL.2.04

Unfortunately the SSL Logjam vulnerability is not fixed within this level. I know how to tweak firefox'es security settings to allow a connection to the webinterface anyway (about:config -> set security.ssl3.dhe_rsa_aes_128_sha and security.ssl3.dhe_rsa_aes_128_sha to false).

Since there seems no way to change the behaviour of the intergrated webserver over the webgui, I was wondering if there is any other way to generate new Diffie-Hellman groups. Or of course a fixed firmware would be even better! I think we could expect that from an enterprise level product ...

Cheers

1 REPLY
loopway
Occasional Visitor

Re: "Logjam" fix for HP1810

well, there is finally an update available:

http://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay/?docId=c04964486

PL.2.06, Build date 21-Oct-2015!!

thought might help others ...

cheers