Heartbleed SSL/TLS Fix for NowSMS

Posted by on Apr 9, 2014 in Software Updates, Support Blog

Topic Keywords: ,

If you are using NowSMS with SSL/TLS in a server role, please be advised that OpenSSL is used to provide this functionality, and may be affected by the widely publicized “heart bleed” flaw.

To address this issue, an update for the module that provides SSL/TLS functionality (OpenSSL v1.0.1g) is available at https://nowsms.com/download/heartbleedfix.zip.

This download is a ZIP archive that contains a replacement version of SMSSSL.DLL, which should be compatible with any NowSMS version since 2012 (older versions would not be affected by this issue).

Stop the NowSMS services and exit the NowSMS configuration program before manually copying SMSSSL.DLL from this ZIP file over the old version.  It may be advisable to first make a backup copy of the old SMSSSL.DLL in the unlikely event that the new version has unexpected certificate validation issues.

Related posts:

  1. SSL/TLS – SHA-1 deprecation and SHA-256 Support
  2. NowSMS and SSL Certificate Chains
  3. NowSMS and SSL Certificates – 2048 Bit Key
  4. Repairing a Corrupt MMSC User Database
  5. NowSMS / NowMMS Update 2013.11.15
  6. NowWAP Gateway
  7. NowSMS Compatibility with Verizon & Sprint
  8. MM7 Schemas and MMS Version Number Confusion

For comments and further discussion, please click here to visit the NowSMS Technical Forums (Discussion Board)...