Security Advisory: POODLE SSLv3 vulnerability (webmasters)

Everest

  • Administrator
  • Hero Member
  • *****
  • Posts: 10722
  • Karma: +0/-0
Security Advisory: POODLE SSLv3 vulnerability (webmasters)
Posted on: October 18, 2014, 11:01:44 PM
I got a security warning from my web-hosting company and i decided to share it with all the webmasters around to buckle up and prevent unauthorized access to their web properties

Quote
Dear Ezeakonam,

A vulnerability called POODLE (Padding Oracle on Downgraded Legacy Encryption) was announced this week in the SSL (Secure Sockets Layer) 3.0 protocol. This vulnerability can be exploited to allow a man-in-the-middle attack allowing the attacker to decrypt ciphertext using a padding oracle side-channel attack.

Earlier this week, we disabled SSL 3.0 on all our servers and others managed on behalf of clients. All the same, its a very good idea to ensure that your web browser is up-to-date at all times.

Thank you for choosing Web4Africa.
 

Quick Reply

NName:

Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture: