summaryrefslogtreecommitdiffstats
path: root/README
diff options
context:
space:
mode:
authorNick Hudson <nick.hudson@isode.com>2014-10-15 12:58:37 (GMT)
committerNick Hudson <nick.hudson@isode.com>2014-10-17 12:43:36 (GMT)
commite82c5e8cae00d7f9d4b0c42e9e8e38f22c072c6d (patch)
treee6a4dd135a3d5edca2042d65c88c69a4b17d13e5 /README
parent768ec40ad0229804ca1dcc06dc9cdc7c8dab9769 (diff)
downloadstroke-e82c5e8cae00d7f9d4b0c42e9e8e38f22c072c6d.zip
stroke-e82c5e8cae00d7f9d4b0c42e9e8e38f22c072c6d.tar.bz2
Don't use SSLv3 in JSSEContext
The POODLE vulnerability means that using SSLv3 is insecure. So this change removes it from the list of protocols that JSSEContext may use. Oracle's "Java Cryptography Architecture Standard Algorithm Name Documentation" http://docs.oracle.com/javase/7/docs/technotes/guides/security/StandardNames.html Lists the "standard names" that can be used in this context: SSLv2 SSLv3 TLSv1 TLSv1.1 TLSv1.2 SSLv2Hello After this patch, only the three "TLS" protocols will be allowed. Test-information: Tested using JRE6 and JRE7; viewing the SSL handshake indicates that the protocol being requested is being used when the handshake occurs Change-Id: I99710a72a4b8567226b1205fdf64c6c67ccc2a9a
Diffstat (limited to 'README')
0 files changed, 0 insertions, 0 deletions