Re: Heads up: If you are using SSLv2 turn it off immediately

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

On 01/03/16 23:23, P. A. López-Valencia wrote:
> The vulnerability is so bad[1], it doesn't only have a CVE number, 
> CVE-2016-0800[4], but a name and its own website: HTTPS DROWN[1][2][3].

Just as many other vulnerabilities these days, there is a marketing
campaign behind them, probably to sell consultancy services.

Anybody who's security-minded hasn't been using SSLv2 anyway.

Attachment: signature.asc
Description: OpenPGP digital signature

[Index of Archives]     [Linux Wireless]     [Linux Kernel]     [ATH6KL]     [Linux Bluetooth]     [Linux Netdev]     [Kernel Newbies]     [Share Photos]     [IDE]     [Security]     [Git]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Linux ATA RAID]     [Samba]     [Device Mapper]
  Powered by Linux