DO NOT INSTALL - THE UPDATES ARE FAULTY (Read this thread through!)
· Security UpdateRemarks
· System will be rebootedBugfixes
36115 WebAdmin reflective XSS Vulnerability36126 OpenSSL security update 1.0.1q
Sascha RudolphSenior Software Engineer, NSG
eremit said:We had been able to reproduce and identify the source of the issue in the so-called Flow Monitor
1. Test webadmin.
2. Test WAF.
3. Test SMTP.
4. Any other dependencies.
You guys didn't even test webadmin??? Is anybody doing QA or someone downloaded the binary and changed it to an rpm and hoped it will work. Two separate trees same problem??? Now a casual contact your reseller/ don't know when it will be fixed??? Really strange what is going on at sophos [:^)]
“Stay paranoid, my friends.”
UTM SCE/SCA | Endpoint SCE
Home: Zotac CI321 (8GB RAM / 120GB SSD) with latest Sophos UTMWork: 2 SG430 Cluster / many other models like SG105/SG115/SG135/SG135w/...