
<div dir="ltr"><div class="gmail_extra"><div class="gmail_quote">16 Ð¾ÐºÑ‚ÑÐ±Ñ€Ñ 2014 Ð³., 7:07 Ð¿Ð¾Ð»ÑŒÐ·Ð¾Ð²Ð°Ñ‚ÐµÐ»ÑŒ Ð˜Ð»ÑŒÑ Ð¨Ð¸Ð¿Ð¸Ñ†Ð¸Ð½ <span dir="ltr"><<a href="mailto:chipitsine@gmail.com" target="_blank">chipitsine@gmail.com</a>></span> Ð½Ð°Ð¿Ð¸ÑÐ°Ð»:<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">


SSL 3.0 Fallback protection<br>


===========================<br>


<br>


Severity: Medium<br>


<br>


OpenSSL has added support for TLS_FALLBACK_SCSV to allow applications<br>


to block the ability for a MITM attacker to force a protocol<br>


downgrade.</blockquote><div><br></div><div>ÐšÑ‚Ð¾-Ð½Ð¸Ð±ÑƒÐ´ÑŒ Ð¿Ð¾Ð´ÑÐºÐ°Ð¶ÐµÑ‚, Ð¼Ð¾Ð¶Ð½Ð¾ Ð»Ð¸ ÑÑ‚Ð¾ Ð²ÐºÐ»ÑŽÑ‡Ð¸Ñ‚ÑŒ Ð² nginx Ð¸ ÐºÐ°Ðº?Â </div></div><br></div></div>