• The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
Menu
  • The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
  • OS/400 Alert: SSL Certificates

    February 11, 2004 Shannon O'Donnell

    If your shop is one of the thousands using digital certificates to enable secure transactions between your iSeries and users’ browsers, you may have recently experienced a problem with disabled certificate authorities. If not, chances are you will soon. Read on for more details. Also included in this issue is a list of a few of IBM’s recommended fixes for OS/400 licensed programs.

    VERISIGN EXPIRES CERTIFICATE AUTHORITIES

    On January 7, Verisign, a major worldwide provider of digital certificates, experienced a sudden surge in demand for verification of its clients’ certificate authorities. This check is performed by connecting to Verisign’s certificate revocation list (CRL) Web site, at crl.verisign.com. The CRL is a file that confirms a certificate authority’s status, identifying whether a particular certificate authority is valid. When the client HTTP servers were unable to connect to the CRL Web site, the certificate authority on the client system was flagged as expired. When the client system was finally able to connect to the site, several hours later, the certificate authority was also marked as expired since January 7.

    Not all servers were affected immediately. That’s because, at least for OS/400 HTTP servers, the certificate authority is not generally validated unless the HTTP server itself is restarted, via an IPL or through a specific command to do so. And since many OS/400 shops don’t IPL except for scheduled maintenance, they have not yet experienced the failing of their certificate authority.

    If your shop uses the Versign Class 3 certificate authority to process SSL digital certificates, and you have not IPL’d or otherwise restarted your HTTP server since before January 7, you should be aware that at some point you will need to take corrective action. This will entail deleting the current Verisign Class 3 certificate authority and an intermediate certificate authority you have installed on your OS/400 Server, and then downloading and installing the updated certificate authority and intermediate certificate authority from Verisign. For complete details, and for the location of the new, valid certificate authority from Verisign, go to the company’s Web site.

    IBM’S RECOMMENDED FIX OF THE WEEK

    IBM‘s recommended fix for V5R2 TCP/IP can be found on the Recommended Fixes Web site.

    Recommended fixes are available for the V5R2 Telnet server.

    Recommended fixes are available for Client Access.

    Recommended fixes are available for AS/400 NetServer.

    Recommended fixes are available for WebSphere Express 5.0.

    THIS WEEK’S NASTY WINDOWS WORRIES

    W32.HLLW.Deadhat is an interesting worm. It appears to be helping you by uninstalling the MyDoom virus, but then it actually installs a new virus and spreads that to all other computers on your network. Nasty.

    Backdoor.OptixPro.13.C is a Trojan horse that gives a remote hacker full access to your computer over port 4001.

    W32.Mimail.T@mm is another mass-mailing worm. Like most worms of this type, it attempts to mail itself to anyone found in your Outlook address book.

    W32.HLLW.Gaobot.JB is a virus that attempts to spread itself to any network shares you may have mapped on your PC. Once again, a warning: Although it can’t be directly affected by viruses like these, the AS/400 Integrated File System can act as a repository for them.

    VBS.Shania is another backdoor Trojan horse virus that allows access to your computer via Port 2414.

    PTF’S AND FIXES FOR OS/400 AND RELATED PROGRAMS

    IBM’s latest cumulative package for V5R2 customers came out January 21.

    The latest HIPER package was released January 20, so you’ll want to grab this one if you’re not current.

    The Database Group PTF was updated January 26.

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Tags:

    Sponsored by
    VISUAL LANSA 16 WEBINAR

    Trying to balance stability and agility in your IBM i environment?

    Join this webinar and explore Visual LANSA 16 – our enhanced professional low-code platform designed to help organizations running on IBM i evolve seamlessly for what’s next.

    🎙️VISUAL LANSA 16 WEBINAR

    Break Monolithic IBM i Applications and Unlock New Value

    Explore modernization without rewriting. Decouple monolithic applications and extend their value through integration with modern services, web frameworks, and cloud technologies.

    🗓️ July 10, 2025

    ⏰ 9 AM – 10 AM CDT (4 PM to 5 PM CEST)

    See the webinar schedule in your time zone

    Register to join the webinar now

    What to Expect

    • Get to know Visual LANSA 16, its core features, latest enhancements, and use cases
    • Understand how you can transition to a MACH-aligned architecture to enable faster innovation
    • Discover native REST APIs, WebView2 support, cloud-ready Azure licensing, and more to help transform and scale your IBM i applications

    Read more about V16 here.

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    AmNet Ditches Intel Server Farm for iSeries Scalability IBM to iSeries Resellers: Learn New Skills or Be Left Behind

    Leave a Reply Cancel reply

Volume 4, Number 4 -- February 11, 2004
THIS ISSUE
SPONSORED BY:

T.L. Ashford
Profound Logic Software
Client Server Development
WorksRight Sofware
Bug Busters Software Engineering

Table of Contents

  • What You Should Know About Activation Groups
  • Soft-Coded Report Distribution
  • Dealing with Divided Date Fields
  • The Better Way to Delete Physical Files
  • OS/400 Alert: SSL Certificates

Content archive

  • The Four Hundred
  • Four Hundred Stuff
  • Four Hundred Guru

Recent Posts

  • Liam Allan Shares What’s Coming Next With Code For IBM i
  • From Stable To Scalable: Visual LANSA 16 Powers IBM i Growth – Launching July 8
  • VS Code Will Be The Heart Of The Modern IBM i Platform
  • The AS/400: A 37-Year-Old Dog That Loves To Learn New Tricks
  • IBM i PTF Guide, Volume 27, Number 25
  • Meet The Next Gen Of IBMers Helping To Build IBM i
  • Looks Like IBM Is Building A Linux-Like PASE For IBM i After All
  • Will Independent IBM i Clouds Survive PowerVS?
  • Now, IBM Is Jacking Up Hardware Maintenance Prices
  • IBM i PTF Guide, Volume 27, Number 24

Subscribe

To get news from IT Jungle sent to your inbox every week, subscribe to our newsletter.

Pages

  • About Us
  • Contact
  • Contributors
  • Four Hundred Monitor
  • IBM i PTF Guide
  • Media Kit
  • Subscribe

Search

Copyright © 2025 IT Jungle