As part of our commitment to keeping you informed, we want to let you know about two of the products we use to support our clients and in some cases which our clients may also use themselves;
LogMeIn Pro and LogMeIn Central
Following the lead of Microsoft, who ended support for Windows XP in April 2014 and for Windows Server 2003 in July 2015.
LogMeIn will be ending their support for their desktop client and host software installed on Windows XP and Windows Server 2003 computers as of 30th May 2016.
Any computers still using these operating systems will continue to be online through to 30th May; at which point Stanridge cannot guarantee your ability to remotely connect to your own systems and we may not be able to remotely control or support those machines beyond this date.
We encourage you to consider an upgrade plan for your operating system to continue use of LogMeIn and to allow us to support your systems in the usual fast and efficient manner beyond 30th May. We’re available here at Stanridge to discuss any details of your upgrade plan before or after this date. We recommend that you review the commonly asked questions below as you begin your transition.
Will I still be able to remote control my Windows XP and Windows Server 2003 computers after 30th May?
Yes, after 30th May 2016, LogMeIn is ending support for Windows XP and Windows Server 2003, which means they will no longer accept technical support phone calls for issues related to LogMeIn software installed on Windows XP or Windows Server 2003 operating systems. It also means that they will not be releasing any new updates for Windows XP or Windows Server 2003 hosts, including security updates.
Stanridge and LogMeIn is not taking any active steps to disrupt the ability to remote control any Windows XP or Windows Server 2003 machines, but we strongly recommend our customers create a plan to move off of these systems at their earliest convenience.
What is the technical reason behind this decision?
LogMeIn made the decision to stop supporting Windows XP and Windows Server 2003 because the cipher suite support in Internet Explorer 8 is limited, meaning it is actually more likely for an issue to occur when using the website client on these operating systems, especially on IE 8.
Currently the only cipher suite that works for Internet Explorer 8 is 3DES (a.k.a Triple DES, 3-DES, TDES), which is left on the website solely to support Windows XP and Windows Server 2003 machines. Once this is considered vulnerable and gets removed, users won’t be able to log into the LogMeIn Pro or LogMeIn Central website using Internet Explorer from a Windows XP or Windows Server 2003 machine. This is the client side.
Existing Windows XP and Windows Server 2003 installations probably won’t be affected as LogMeIn use their our own OpenSSL library (built-in) to connect to the website and gateways.
However it may be a problem to attach or change a subscription since, in that case, the embedded web-view control is using the LogMeIn’s website and Common Login Service. This may break down if the 3DES cipher is determined to be a security vulnerability and later disabled.
Why is there no specific date when computers on Windows XP and Windows Server 2003 will no longer be accessible via LogMeIn?
Every environment is different and once LogMeIn are no longer releasing updates to their software installed on the Windows XP or Windows Server 2003 operating systems, they can no longer confirm the reliability or security of that software, but they/we also are not actively turning off the connection. Therefore, you will be able to remote control Windows XP and Windows Server 2003 computers indefinitely, but Stanridge and LogMeIn will not be responsible for the problems that may occur from using Windows XP or Windows Server 2003 after 30th May 2016.
Do I need to manually turn off automatic updates to my Windows XP and Windows Server 2003 hosts to continue remote controlling those computers?
No. Since after 30th May 2016, LogMeIn will no longer provide any new updates to Windows XP or Windows Server 2003 hosts, this is an unnecessary step. These host computers will not receive any sort of updates in the future.