#13346: OpenWRT downloads susceptible to MITM attacks?
------------------------------+--------------------------------
Reporter: openwrt-devel@… | Owner:
Type: defect | Status: reopened
Priority: highest | Milestone:
Component: website | Version:
Resolution: | Keywords: MD5 SSL HTTPS MITM
------------------------------+--------------------------------
Comment (by anonymous):
Quick check:
openwrt.org is vulnerable AND exploitable to CVE-2014-0224 !
dev.openwrt.org uses still old and insecure signature. POODLE is not
possible any more because SSL3 got finaly disabled.
--
Ticket URL: <https://dev.openwrt.org/ticket/13346#comment:15>
OpenWrt <http://openwrt.org>
Opensource Wireless Router Technology
_______________________________________________
openwrt-tickets mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-tickets
