News and Announcements

9th May 2017
yImportant NoticezMeasures to SSL3.0 Vulnerability Issue


Thank you for using Asahi Net.

We, at Asahi Net, have been implementing Secure Sockets Layer (SSL) encryption protocols so that you may use our website safely.

In an older version of SSL, contents encrypted by SSL 3.0 has been found to be vulnerable to third-party decryption.

Reference: SSL 3.0fs Vulnerability Countermeasures (Information-technology Promotion Agency) (in Japanese only)

Currently, as multiple conditions are required for decryption, it has been announced that this is not a vulnerability that can be immediately exploited. However, so that our customers may have an environment where they can use the Internet safely and securely, Asahi Net will gradually phase out the use of the SSL 3.0 protocol for our website and email service.

Additionally, we are planning to switch over to the relatively newer gTLSh protocol.

As a result of this change, depending on onefs Web browser and email client settings, there may be cases where some customersf Web browsers or email clients do not function as intended.

Please refer to the following instructions for further support should such issues arise.

We apologize for the inconvenience and thank you for your understanding.

Asahi Net

1. Overview of the Response to SSL 3.0fs Vulnerabilities

Measure to be Implemented

The termination of SSL 3.0 communication.

Implementation Schedule

Gradual phase-out starting from 13th June 2017

Affected Services

  • Asahi Net Website (https://asahi-net.jp, https://bbb.asahi-net.or.jp)
  • AsaOne Groupware Service (https://xxxx.asaone.jp)
  • AsaBlo Blog Service (https://www.asablog.jp/xxxxxx)
  • Virtual Domain Web Hosting Service
  • MMJP Web Hosting Service
  • Email service (including Asahi Net Webmail service)
    • mail.asahi-net.or.jp
    • mails.asahi-net.or.jp
    • mailssl.asahi-net.or.jp
    • pop.asahi-net.or.jp

2. Troubleshooting Methods

2-1 Regarding Web Browsers

Please confirm if you are using the latest version of your web browser.

If you are not using the latest version, please update to it.

How to Update Your Web Browser

2-2 Regarding Email Clients

For those using email clients, please confirm if your current email client is using the settings recommended by Asahi Net.

Configuration Guide : Email Client

For details on how to update your email client, please refer to the email clientfs official Website, support page, etc.

yImportantz

If you are using an email client where developer support has ended, such as Outlook Express, Outlook 2003, Eudora, and so on, to protect your privacy, we recommend that you change your Email Client.

Please see and choose from the list of email clients listed in our configuration guide.

3. Frequently Asked Questions (FAQ)

Q. Will this affect unencrypted plaintext communication sent using an email client?

A. There is no effect on unencrypted plaintext communication sent using an email client.
However, we do not recommend it, as there is a risk of email communications being seen by a third party.
We recommend that you use email clients that support gTLSh encryption.

Q. Any effects on ordinary web browsing and general use of Internet service?

A. Asahi Netfs termination of SSL 3.0 support will not affect general web browsing and use of online services.

We apologize for the inconvenience and appreciate your understanding.

--------------------------------------------------
For inquiries regarding this matter:

Asahi Net English Support Desk
Phone : 0120-577-135 (if using an NTT landline)
: 03-6631-0861 (if using a cell phone, IP-Phone)
Hours : Monday - Friday, 10:00am - 5:00pm,
excluding national holidays
For inquiries by email, please use this form
--------------------------------------------------