For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

squip_86995's avatar
squip_86995
Icon for Nimbostratus rankNimbostratus
Apr 07, 2014

OpenSSL and Heart Bleed Vuln

Get the latest updates on how F5 mitigates Heartbleed     Hi Team,   I know this question is eventually going to be asked - I may as well do it.   With the news today about the Heartblee...
https
management
security
ssl
tls
TMOS
What_Lies_Bene1's avatar
What_Lies_Bene1
Icon for Cirrostratus rankCirrostratus
Apr 08, 2014

Seems you are not.

 

I'd like some clarity around the compat, native mixed cipher strings myself. I assume worse case and that if a compat cipher is specified in the cipher string then regardless of whether a native cipher is actually negotiated and used everything drops down to OpenSSL. Perhaps that's not the case.