Wednesday, October 15, 2014

The POODLE attack on SSL 3.0

Google wrote on its blog about the POODLE attack which seems to be a concern now. Though nvd still says it is under review. One of the recommendations being to disable SSL 3.0 on client (or server or both). Readers are suggested to go through "Recommendations" section here for detailed explanation on the recommendation and "The POODLE Attack" section for explanation on how the attack works. Any comments are appreciated.

No comments:

Post a Comment