Server Software Update Notification: 06-27-2008
This is an important notice to let you know about the security updates for SSH and Telnet that will affect all Signature Hosting Plans (Standard, Pro, Pro Plus).
We are requesting all SSH version 1 (SSH1) customers to transition to SSH version 2 (SSH2) because of the significant security enhancements and benefits that SSH2 offers. AlpineWeb will also stop support for SSH1 and Telnet effective August 20, 2008.
AlpineWeb made this decision because SSH2 provides a higher level of security that is required by our customers. SSH2 adds the following protective measures:
- Eavesdropping Prevention: SSH2 encrypts all data, making it unreadable to potential eavesdroppers.
- Domain Name System (DNS) and IP Spoofing Protection: SSH2 wards off such attacks by cryptographically verifying the identity of the server, for every session.
- Session Hijacking Prevention: SSH2 renders hijacking ineffective through its integrity-checking process.
- "Man-in-the-Middle" or Replay Attacks Protection: SSH2 prevents third parties from storing your information without authorization and then retransmitting your information without your knowledge.
For additional information on SSH2, please read this article which outlines additional benefits and instructions: http://www.bmighty.com/security/showArticle.jhtml?articleID=203103226
To take full advantage of the security improvements in SSH2, check the client software you use for SSH to make sure it supports SSH2 (for example PuTTY or SecureCRT). Additionally, if you have any custom scripts that initiate a SSH or Telnet connection, please update them to SSH2.
If you have any questions, please feel to contact AlpineWeb at 1-888-356-8797 or send an e-mail to support@alpineweb.com.
|
