[jira] [Commented] (CASSANDRA-8265) Disable SSLv3 for POODLE

Michael Shuler (JIRA) Mon, 10 Nov 2014 10:28:04 -0800

    [ 
https://issues.apache.org/jira/browse/CASSANDRA-8265?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14205118#comment-14205118
 ]


Michael Shuler commented on CASSANDRA-8265:
-------------------------------------------

Sounds reasonable to me. Is there a safety net of enabling SSLv3 if a user 
needs it? (Haven't played with ssl in c*)

> Disable SSLv3 for POODLE
> ------------------------
>
>                 Key: CASSANDRA-8265
>                 URL: https://issues.apache.org/jira/browse/CASSANDRA-8265
>             Project: Cassandra
>          Issue Type: Bug
>            Reporter: Jeremiah Jordan
>
> We should probably disable SSLv3.
> http://www.oracle.com/technetwork/java/javase/documentation/cve-2014-3566-2342133.html



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (CASSANDRA-8265) Disable SSLv3 for POODLE

Reply via email to