Sweet32 errors when atera/splashtop installed on machine
i've been getting some machines ready for a Cyber essentials Plus audit and it has been failing constantly on a sweet32 vulnerability. couldnt figure it out but when i remove both atera and splashtop it passes without issue.
anyone else seeing this or aware of it. on port 9527/tcp
Comments
-
Hey @billy I want to tackle this with our support team. Did you raise a ticket with them as well?
1 -
0
-
@billy The Sweet32 vulnerability is an attack on older block ciphers that use a 64-bit block size. The issue arises due to the birthday problem in cryptography, where after a certain amount of traffic (which is actually not that high in modern terms), collisions can occur in the cipher block, allowing an attacker to begin to deduce information about the plain text. This vulnerability mainly affects 3DES and Blowfish encryption protocols.
Software vendors should address such vulnerabilities by either implementing a newer, more secure protocol, or by using the old protocol in a way that minimizes the vulnerability (for instance, by forcing re-keying before too much traffic is sent with a single key). If Atera and Splashtop are causing your systems to fail the Cyber Essentials Plus audit due to this vulnerability, it's possible they are either still using these vulnerable protocols, or their implementation of these protocols is flawed.
Port 9527/tcp is not a well-known port, and different applications might use it for various purposes. If this port is showing up as vulnerable in your audit, it could be that either Atera or Splashtop, or both, are using it in a way that is susceptible to the Sweet32 attack.
If you've narrowed the problem down to these two applications, it would be a good idea to reach out to their respective support teams for assistance. They might have a patch available or be able to provide guidance on how to configure their software to pass the audit. It's also possible that this is a known issue they're working to resolve.
1 -
i have..
stated that not atera, but possible location specific issue with splashtop
0
Topics
- All Topics
- 41 Getting started
- 25 Read before posting
- 8 Meet and greet
- 237 General
- 64 News and announcements
- 1 Swag
- 1 Roadmap updates
- 79 Resources
- 12 Knowledge Base
- 16 Webinars
- 1 Shared Script Library
- 2 Blog
- 19 Pro Tips
- 27 Got an idea?
- 3 Atera Academy
- 2 ActionAI
- 1 Copilot
- 140 Remote Monitoring and Management
- 84 Remote Monitoring
- 27 Patch Management
- 105 Professional Services Automation
- 64 Helpdesk
- 17 Billing
- 21 Reporting
- 36 Integrations & add-ons
- 20 Integrations
- 10 Add-ons
- 103 Scripting and automations
- 61 Scripts
- 30 Automations