SSL broken, again, in POODLE attack

Jump to latest Follow Reply
Status
You're currently viewing only afidel's posts. Click here to go back to viewing the entire thread.
Not open for further replies.
Muted (0)
Sort by date Sort by votes
A

afidel

Ars Legatus Legionis
18,198
Subscriptor
  • #13
    So I've got another thing to hand of to my team while I'm out of town this week =)
    Luckily I think we can just change the GPO for the IT testing computers and if nothing breaks for a few days roll it out to the whole company, I'll have to check if the GPO enabled version of Firefox we use has an option for disabling SSLv3, it's really only used for one internal app, but it's better to be thorough.
     
    Upvote
    -5 (3 / -8)
    A

    afidel

    Ars Legatus Legionis
    18,198
    Subscriptor
  • #74
    [url=http://meincmagazine.com/civis/viewtopic.php?p=27780695#p27780695:2p3z1zji said:
    dooferorg[/url]":2p3z1zji]As well as SSL3 needing to go there's the phasing out of SHA1 too.

    Certificates will likely need to be re-signed and webservers reconfigured soon.
    Click to expand...
    SHA1 certs can't be renewed past 12/31/2016, we recently renewed our wildcard cert and since the expiry was in 2017 it was issued as SHA2, we had to have them generate a copy as SHA1 as Citric Secure Gateway can't deal with SHA2 but it's set to expire before the main cert.
     
    Upvote
    1 (1 / 0)
    Status
    You're currently viewing only afidel's posts. Click here to go back to viewing the entire thread.
    Not open for further replies.
    Jump to latest Follow Reply
    Jump to latest Follow Reply