On 2015-11-16 08:19:36 [-0700], Alex Rousskov wrote: > On 11/14/2015 09:02 AM, Alex Rousskov wrote: > > > If we can provide a small better fix, we will. If a better fix requires > > too many unrelated changes to this Polygraph version, we will provide a > > patch that disables SSLv3 (until a recent Polygraph version with a > > comprehensive fix is released). > > The attached patch allows Polygraph to be built with OpenSSL that does > not support SSLv3 while preserving legacy functionality for those who > need it.
Current 4.9.0 version still has the problem. Any reason why I should not NMU it? Alex in case you need a sponsor then I could help with that. > HTH, > > Alex. Sebastian
