By: mikewillis

October 29, 2014 10:15 am

1,824 views

Easily protect Firefox on SLED on multiple machines against POODLE attack

As has been much publicised recently, (including Understanding POODLE), an unfixable vulnerability has been found in SSLv3 and it is recommended that support for it be disabled. Mozilla have said that SSLv3 will be disabled by default in Firefox 34, but SLED, very sensibly for an Enterprise distro, uses the Extended Support Releases of Firefox […]

Read More


Matthias G. Eckermann
By: Matthias G. Eckermann

October 15, 2014 9:17 am

11,740 views

The POODLE weakness in the SSL protocol (CVE-2014-3566)

Your immediate action is required In short: The POODLE attack to the SSL 3.0 protocol, published last night (https://www.openssl.org/~bodo/ssl-poodle.pdf) requires server and desktop administrators and desktop users to carefully review their security protocol settings in packages such as HTTP Servers (such as Apache, Tomcat), SMTP Servers (such as Postfix), IMAP Servers, ... […]

Read More