This forum uses cookies
This forum makes use of cookies to store your login information if you are registered, and your last visit if you are not. Cookies are small text documents stored on your computer; the cookies set by this forum can only be used on this website and pose no security risk. Cookies on this forum also track the specific topics you have read and when you last read them. Please confirm whether you accept or reject these cookies being set.

A cookie will be stored in your browser regardless of choice to prevent you being asked this question again. You will be able to change your cookie settings at any time using the link in the footer.

SSL 3.0 not secure
#1
SSL 3.0 not secure
http://googleonlinesecurity.blogspot.fr/...sl-30.html

Google security team iunveiled a flaw in SSL 3.0.... NSA must be happy.

Details here:
https://www.openssl.org/~bodo/ssl-poodle.pdf

No solution unless switching fully to TLS.

M B
No support using PM (Auto adding to IGNORE list!), use the forum. 
How to ask

200$ free to start your VPS 60 days credit
Reply
Thanks given by:
#2
RE: SSL 3.0 not secure
https://wiki.mozilla.org/Security/Server_Side_TLS provides some good information on configuring your server. Thanks for alerting me about this Smile
Before posting, update your profile with your OS, Sentora version and server type!

Reply
Thanks given by:
#3
RE: SSL 3.0 not secure
http://news.netcraft.com/archives/2014/1...odles.html

stats & more infos.
No support using PM (Auto adding to IGNORE list!), use the forum. 
How to ask

200$ free to start your VPS 60 days credit
Reply
Thanks given by:
#4
RE: SSL 3.0 not secure
I did a quick blog post over on zVPS : http://blog.zvps.uk/security/2014/10/15/...bleed-bug/ explains how users can protect themselves on browsers as well as server admins switching off sslv3 for apache/nginx/dovecot/postfix/nodejs etc Smile

We disabled sslv3 on our servers back in May after reading up on ssl security Smile
Reply
Thanks given by:


Forum Jump:


Users browsing this thread: 1 Guest(s)