Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Thu, 16 Oct 2014 08:37:43 +0000
From: ishish <ish@...rino.com>
To: oss-security@...ts.openwall.com
Subject: Re: Truly scary SSL 3.0 vuln to be revealed soon:

Hanno Böck wrote:
> It's out:
> 
> https://www.openssl.org/~bodo/ssl-poodle.pdf
> http://googleonlinesecurity.blogspot.de/2014/10/this-poodle-bites-exploiting-ssl-30.html
> 
> My conclusion stays the same: Disable SSLv3.
> 

Does anyone else see resemblance to chopchop attack?

-- 
ishish

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ