HPE Community
Web and Unmanaged
1753934 Members
10001 Online
108810 Solutions
New Discussion

"Logjam" fix for HP1810

 
loopway
Visitor

‎01-15-2016 08:15 AM

‎01-15-2016 08:15 AM

"Logjam" fix for HP1810

Hello all

I'm using an hp1810 switch and couldn't find any newer firmware than the following:

HP 1810-24G, PL.2.04

Unfortunately the SSL Logjam vulnerability is not fixed within this level. I know how to tweak firefox'es security settings to allow a connection to the webinterface anyway (about:config -> set security.ssl3.dhe_rsa_aes_128_sha and security.ssl3.dhe_rsa_aes_128_sha to false).

Since there seems no way to change the behaviour of the intergrated webserver over the webgui, I was wondering if there is any other way to generate new Diffie-Hellman groups. Or of course a fixed firmware would be even better! I think we could expect that from an enterprise level product ...

Cheers

0 Kudos
1 REPLY 1
loopway
Visitor

‎03-14-2016 09:11 AM

‎03-14-2016 09:11 AM

Re: "Logjam" fix for HP1810

well, there is finally an update available:

http://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay/?docId=c04964486

PL.2.06, Build date 21-Oct-2015!!

thought might help others ...

cheers

0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.