SSL/TLS

SSL/TLS – SHA-1 deprecation and SHA-256 Support

This post is for the information of any customers using SSL/TLS server functionality in NowSMS. The industry has deprecated the use of SHA-1 signed server certificates, in favor of a more secure algorithm known as SHA-256. SHA is a popular hashing algorithm used by the majority of SSL certificates. As computing power has increased the feasibility of breaking the SHA-1 hash has increased. Plans...

Read More

Heartbleed SSL/TLS Fix for NowSMS

If you are using NowSMS with SSL/TLS in a server role, please be advised that OpenSSL is used to provide this functionality, and may be affected by the widely publicized “heart bleed” flaw. To address this issue, an update for the module that provides SSL/TLS functionality (OpenSSL v1.0.1g) is available at https://nowsms.com/download/heartbleedfix.zip. This download is a ZIP archive...

Read More

NowSMS and SSL Certificate Chains

If you have purchased an SSL certificate from a certificate authority for use on a NowSMS server, you may encounter a problem with some browsers displaying a warning or refusing to accept the certificate.  This can occur when SSL certificates are not signed by a certificate authorities’ root certificate, but by an intermediate certificate.  (This has been observed with certificates issued...

Read More

NowSMS and SSL Certificates – 2048 Bit Key

In the last 6 months, many SSL Certificate Authorities (CAs) have made a switch to requiring web servers to use 2048-bit private keys. It is believed that increased computing power will make the commonly used 1024-bit keys possible to break by 2011. There is a side effect in switching to the larger keys that some old web browsers don’t support > 1024 bit keys. I can’t find a good...

Read More