CVE-2014-3566, important SSLv3 vulnerability, known as Poodle.

[Alex Vasilenko]

16 октября 2014 г., 7:07 пользователь Илья Шипицин <chipitsine at gmail.com>
написал:
>
> SSL 3.0 Fallback protection
> ===========================
>
> Severity: Medium
>
> OpenSSL has added support for TLS_FALLBACK_SCSV to allow applications
> to block the ability for a MITM attacker to force a protocol
> downgrade.


Кто-нибудь подскажет, можно ли это включить в nginx и как?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nginx.org/pipermail/nginx-ru/attachments/20141016/db801fc6/attachment.html>