> In order to fix the Poodle vulnerability on SSLv3, I tried to disable my > SSLv3 cipher using the below cipher set, but did not even initiate SSL in > 0.9.8a.
If you are running 0.9.8a Poodle is probably the least of your worries. Looking at https://www.openssl.org/news/openssl-0.9.8-notes.html it appears there are around 50 CVE fixes you are missing. _______________________________________________ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
