Does the Heartbleed bug in OpenSSL affect any SmarterTools products?
Question asked by Douglas Foster - 4/9/2014 at 7:53 AM
We are running SmarterMail 11.x with IIS.  Initial reports seem to indicate the Microsoft did not use OpenSSL code in their products.  But I wonder if there is any SSL logic within the SmarterMail server which does use OpenSSL?  Will clients who do not use IIS need a patch?
Heartbleed has been all over the news this morning, but for any who need details on Heartbleed:

2 Replies

Reply to Thread
Grady Werner Replied
Employee Post Marked As Answer
SmarterTools does not use OpenSSL, so the Heartbleed bug does not affect our products.  We use the stuff built right into Microsoft.Net.
We always recommend keeping your Operating System patched in any case.
Grady Werner SmarterTools Inc. www.smartertools.com
Douglas Foster Replied
is a website by one of the guys who found the problem.   It can be used to check a server for vulnerability.
The FAQ says that he had some problems with false negatives, probably due to server load.
The FAQ also suggest this extension for Google Chrome
My SmarterMail website passes with both tools.

Reply to Thread