New on LowEndTalk? Please Register and read our Community Rules.
SSL
A vulnerability in the design of SSLv3 was uncovered earlier this week. This vulnerability means that attackers could exploit this weakness and try to decrypt encrypted connections. SSLv3 is 18 years old and the technology behind it is obsolete and insecure.
If you are still using SSLv3, our recommendation is that you upgrade to TLS as soon as possible to avoid any type of service disruption.
Comments
aka poodlebleed
Removed.
@nekki this can't be on right?
Did you read the LET Rules and Guidelines?
@Yorksit where are you from?
We are based in Bradford.
Can someone tell me what shut was posted so I don't have to go to the trouble of finding out myself?
He promoted his site in a post.
What did he remove? So much people flagged it
In fact, as I know, google, yahoo and microsoft still SSLv3 enable. So?.
Those companies have A) the smartest people in the industry looking for patches and
support the TLS_FALLBACK_SCSV extension. POODLE is not really all that dangerous. It takes a significant amount of time and resources to compromise a single user. I don't see anyone other than a hacker in a coffee shop even attempting it - and never at a large scale.