Welcome! Log In Create A New Profile

Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.

Forum List Message List New Topic Print View

Maxim Dounin

October 17, 2014 09:26AM

Hello!

On Fri, Oct 17, 2014 at 03:37:21AM -0400, igor.goncharenko wrote:

> Интересно, вот я выключил sslv3 в ssl_protocols, можно ли как-то увидеть в
> логе, что клиент пытается установить соединение по sslv3?

Да, будет ошибка на уровне info:

2014/10/17 17:25:08 [info] 71979#0: *1 SSL_do_handshake() failed (SSL: error:1408A10B:SSL routines:ssl3_get_client_hello:wrong version number) while SSL handshaking, client: 127.0.0.1, server: 0.0.0.0:8443

--
Maxim Dounin
http://nginx.org/

_______________________________________________
nginx-ru mailing list
nginx-ru@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx-ru

Reply Quote

RSS

Subject	Author	Posted
CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Gena Makhomed	October 15, 2014 09:06AM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Maxim Dounin	October 15, 2014 09:34AM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Gena Makhomed	October 15, 2014 12:08PM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Maxim Dounin	October 15, 2014 01:42PM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Илья Шипицин	October 16, 2014 12:08AM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	mente	October 16, 2014 04:16AM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Maxim Dounin	October 16, 2014 09:46AM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Gena Makhomed	October 16, 2014 03:50PM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Gena Makhomed	October 16, 2014 03:18PM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Maxim Dounin	October 16, 2014 04:38PM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Gena Makhomed	October 17, 2014 07:36AM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Maxim Dounin	October 17, 2014 09:26AM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Gena Makhomed	October 19, 2014 12:56PM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Maxim Dounin	October 20, 2014 12:16AM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	mva	October 20, 2014 01:28AM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Илья Шипицин	October 20, 2014 04:40AM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Илья Шипицин	October 16, 2014 12:06AM
Re[2]: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Михаил Монашёв	October 16, 2014 04:06AM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Илья Шипицин	October 20, 2014 04:48AM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Aleksandr Sytar	October 16, 2014 07:36AM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	igor.goncharenko	October 17, 2014 03:37AM
Re: CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.	Maxim Dounin	October 17, 2014 09:26AM

Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 122

Record Number of Users: 8 on April 13, 2023

Record Number of Guests: 421 on December 02, 2018