Menu
▾
▴
[naviserver-devel] I've update to solve SSL/TLS MITM vulnerability
|
From: Cesáreo G. R. <ce...@ce...> - 2014-06-20 21:45:44
|
Hi! I had an F in Qualys SSL Labs due to the most recent openssl bug (SSL/TLS MITM vulnerability (CVE-2014-0224): https://www.openssl.org/news/secadv_20140605.txt). So, - I've upgrade openssl (in my box via debian apt-get update and apt-get upgrade). Now with OpenSSL 1.0.1e 11 Feb 2013 - I've upgrade naviserver (to TIP version). I think nssl module was not updated. And it worked, now I get A+. I think that it wasn't a naviserver issue but I post it here just to keep informed our community. Thanks Cesareo |
