Archive

RC4 no longer considered secure

  |   Lukas Pokorny

The security of RC4 encryption algorithm has been questionable for many years. But despite well-founded concerns, this has remained a popular TLS/SSL cipher not only due to its speed, but also as a countermeasure against "BEAST" attack targeting block ...

DNS, Multicast DNS, Apple devices and .local domains

  |   Lukas Pokorny

Nearly ten years ago, we decided to use a first-level domain of .local for servers on our internal network that were not supposed to be accessed from the Internet. Back then, this was actually quite popular, and even Microsoft suggested the use of .local ...

POODLE Attack - what it is and how to prevent it

  |   Lukas Pokorny

Last month, Google Security Team disclosed POODLE Attack - a vulnerability in SSL 3.0 protocol that makes it possible for attackers to reveal encrypted data with relative ease. Fortunately, newer versions of the SSL 3.0 protocol (TLS 1.0 and higher) do ...

Get-SFTPFiles function for PowerShell

  |   Martin Vobr

This is a guest post by Tim Smiths, user of Rebex SFTP, who was so kind to share his real-world experience with using SFTP from PowerShell script. Suppose that we have a few imports that require us getting the latest files from an SFTP server, and we're ...

Rebex products are not affected by Heartbleed exploit

  |   Lukas Pokorny

Rebex products are not affected by the critical OpenSSL bug known as "Heartbleed". A Heartbleed exploit makes it possible for an attacker to access sensitive data such private keys used by the servers to encrypt SSL traffic, usernames and passwords. ...