Your support is needed and is appreciated as Amigaworld.net is primarily dependent upon the support of its users.
|
|
|
|
| Poster | Thread |  kvasir
|  |
ssl v3, miami, and Ibrowse
Posted on 19-Oct-2014 22:39:48
| | [ #1 ] |
| |
 |
Regular Member
 |
Joined: 26-Jul-2004
Posts: 189
From: Wisconsin, USA | | |
|
| Hello all, I've been having some sslv3 issues in Ibrowse of late. Unfortunately, I don't know if this is due to the Poodle thing, or the new cable modem that got swapped out the same day this started. Anyway, I used to check my facebook account (using m.facebook.com and some spoofing), and search using duckduckgo.com, among a few other things. If this is a poodle thing, is there any kind of update planned? Otherwise, what might cause these sslv3 probs? (linky to screengrab)
 _________________
|
| | Status: Offline |
| | number6
| |
Re: ssl v3, miami, and Ibrowse
Posted on 19-Oct-2014 22:49:06
| | [ #2 ] |
| |
 |
Elite Member
 |
Joined: 25-Mar-2005
Posts: 11589
From: In the village | | |
|
| @kvasir
discussed here I believe
#6
_________________
This posting, in its entirety, represents solely the perspective of the author.
*Secrecy has served us so well* |
| | Status: Offline |
| | kvasir
| |
Re: ssl v3, miami, and Ibrowse
Posted on 19-Oct-2014 23:29:08
| | [ #3 ] |
| |
|
Regular Member
|
Joined: 26-Jul-2004
Posts: 189
From: Wisconsin, USA | | |
|
| @number6
Ah, ok. Thanks for linky, was kinda what I was afraid of.. (Tried both amissl and openssl to no avail) _________________
|
| | Status: Offline |
| | Amiga4000
| |
Re: ssl v3, miami, and Ibrowse
Posted on 20-Oct-2014 3:09:13
| | [ #4 ] |
| |
 |
Regular Member
|
Joined: 5-Jan-2006
Posts: 375
From: The Ford Galaxy | | |
|
| @kvasir
Not sure if this applies to your situation or if you've seen this bulletin... Maybe it will help... read carefully for iBrowse specific instructions...
https://sintonen.fi/advisories/amiga-ssl-vulnerabilities.txt
Also, iBrowse news http://www.ibrowse-dev.net/news.php?id=1393094281
Notice it mentions an iBrowse v2.5 future version possibility!
Also, after applying the following instructions, iBrowse v2.4 is vulnerable checking with the poodle test site below as SSLv3 will still be enabled (must use the non-java script test method on the poodle test page or enable java script). Without SSLv3 enabled no secure pages will be displayed and secure pages don't seem to load under TLSv1 either (no auto fallback?). Hmmm...
BTW, I recently turned off SSLv3 in Firefox v3.6.28 for OSX 10.5.8 (I know - old as HE!!) and am NOT vulnerable under poodle test https://www.poodletest.com/
Hope it helps.... Last edited by Amiga4000 on 20-Oct-2014 at 06:37 AM.
_________________
Fulfill newlight's Elite Narcissist Demands NOW Or He Will Send You To H3LL!  |
| | Status: Offline |
| |
|
|
|
[ home ][ about us ][ privacy ]
[ forums ][ classifieds ]
[ links ][ news archive ]
[ link to us ][ user account ]
|
14 crawler(s) on-line.
158 guest(s) on-line.
3 member(s) on-line.
