If you are running Apache, as I do you may want to take steps to secure your system but making a slight adjustment to your configuration. By adding the simply line: SSLProtocol All -SSLv2 -SSLv3 The file location: /etc/apache2 The file name: apache2.conf Remember to always backup a configuration file before making changes. Once completed restart apache: […]
Tag: SSL
First thing that came to my mind when reading about POODLE was how can I test, followed by what to do to patch/fix this. So the first thing is to test for the vulnerability. And from all I have read so far is that you are vulnerable if your servers support SSLv3. I am confident that […]
On Tuesday, October 14, 2014, Google researchers announced the discovery of a vulnerability that affects systems with SSL 3.0 enabled. This vulnerability has been named POODLE (Padding Oracle On Downgraded Legacy Encryption). Details are available at https://www.openssl.org/~bodo/ssl-poodle.pdf. It has been strongly encouraged to discontinue the use of SSL 3.0. Info Sources http://googleonlinesecurity.blogspot.com/2014/10/this-poodle-bites-exploiting-ssl-30.html
You are on vacation or spending the weekend at the beach. Like normal your using your laptop or smartphone. You may be computer savvy; so you don’t allow onlookers view you typing your secure passwords. But its not those that you can see you need to worry about. Its the person watching your network activity; […]
By default Firefox has its own certificate store from well-know and trusted commercial Certificate Authorities. So today when I pushed out an internal self signed certificate; Firefox did not reconcile it as valid. To correct this issue I did the following: Launched Firefox Opened the options panel and selected Advanced Selected View Certificates to access […]
Ouch! With Go Daddy Certificates: I ran into this issue on a server when trying to apply a new Certificate and its intermediate Certificates The issue seemed to be from not having a complete Certificate Chain installed in my servers Certificate Store. The solution to fix this issue was simple. Download and install the root bundles from […]