SPDY errors in log

tunist nginx-forum at nginx.us
Sun Oct 19 23:37:34 UTC 2014


thanks, yes - i just thought to do that before i read your reply. the test
says my server is not vulnerable to the attack - so the bugfixes appear to
have been integrated into the latest fedora version of openssl, even though
running the openssl version command does not show this to be the case.

so i just put up with the regular error log entries for inflate?

mex Wrote:
-------------------------------------------------------
> hi tunist, 
> 
> if you want to test your server for CCS-vuln you might use
> https://www.ssllabs.com/ssltest/
> 
> or the testscript from  https://testssl.sh/
> when you prefer to test locally.
> 
> 
> > 
> > though when i run openssl version, i see: OpenSSL 1.0.1e-fips 11
> Feb
> > 2013 not sure why..!?
> 
> distros backport patched but usually dont ship new versions,
> thus dont update version-numbers; same here, although 
> this system is fully patched
> 
> $ openssl version
> OpenSSL 1.0.1e 11 Feb 2013

Posted at Nginx Forum: http://forum.nginx.org/read.php?2,254144,254149#msg-254149



More information about the nginx mailing list