WiredTree Comments On Danger Of Outdated Cryptographic Technology

Share Article

WiredTree commented this week on the responsibility of web services providers, including web hosting companies, to protect their users from the clear and present danger presented by the inclusion of outdated cryptographic technology in server software.

News Image
When we take on a managed hosting client, we take on a responsibility to proactively ensure that their systems are in a state that doesn’t put users at unreasonable risk.

WiredTree, a leading provider of managed dedicated servers, virtual private servers, and hybrid servers, commented this week on the responsibility of web services providers, including web hosting companies, to protect their users from the clear and present danger presented by the inclusion of outdated cryptographic technology in server software.

At the time of writing, over ten percent of HTTPS servers are vulnerable to the FREAK Attack, which has the potential to allow encrypted connections to be hijacked by malicious third parties. The current vulnerability level is a significant decline from the peak 36% percent vulnerability rate. The FREAK vulnerability, as described by the Infosec Institute, is one of several that resulted from web servers including outdated cryptographic suites, an ongoing problem. While the vulnerability is exploitable due to a bug in the browser, there is no reason for web servers to offer insecure cryptographic suites in the first place.

“When we take on a managed hosting client, we take on a responsibility to proactively ensure that their systems are in a state that doesn’t put users at unreasonable risk,” says Zac Cogswell, President of WiredTree, “There are vulnerabilities we can’t do anything about until they are discovered by researchers, but the class of vulnerability that includes FREAK could have been avoided if security best practices, including the proper configuration of web server software, had been implemented.”

By taking a proactive approach to security, WiredTree’s ServerShield security hardening process ensures that any vulnerabilities that exist within their software stack are immediately patched, but also that the surface area for vulnerabilities is minimized by proper configuration of the server’s TCP/IP stack and services.

The company believes that web hosting providers who take on the responsibility of providing managed hosting should ensure that they don’t leave clients and their clients’ users out on a limb in an era of heightened information security and privacy concerns.

###

About WiredTree

WiredTree specializes in delivering managed hosting experience that places the client in complete command; covering virtual, hybrid, and dedicated web hosting. As champions of customer care, it's no wonder that more than 5,000 clients enjoy WiredTree's free hardware level-ups and a <15 minute average ticket response time. All of this is built on top of only the highest-performing technologies, including LightSpeed web server, MariaDB, memcached, SSD-driven hardware, and an in-house management system called Grove. To learn more about what WiredTree can do for your site, visit http://www.wiredtree.com.

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Zac Cogswell
WiredTree
+1 866-523-8733
Email >
@wiredtree
since: 03/2009
Follow >
Visit website