Poodle is officially fixed only in enterprise edition But I am using community edition and could go around it.
After changing cipher did you his the restart button that appeared? Cipher I sent you do not allow any SSLv3 while it's still technically enabled Cordialement, Mathieu CHATEAU http://www.lotp.fr 2015-06-17 13:43 GMT+02:00 Emrah DALGIÇ <emrah.dal...@hititcs.com>: > I checked iso and it is 3.0 > > > > How could I check version via GUI or CLI? > > > > > > *From:* Mathieu Chateau [mailto:mathieu.chat...@lotp.fr] > *Sent:* Wednesday, June 17, 2015 2:29 PM > > *To:* zenloadbalancer-support > *Subject:* Re: [Zenloadbalancer-support] ZEN poodle disable > > > > Do you have version 3.0.5 for Zen ? > > > Cordialement, > Mathieu CHATEAU > http://www.lotp.fr > > > > 2015-06-17 13:21 GMT+02:00 Emrah DALGIÇ <emrah.dal...@hititcs.com>: > > Hello, > > > > I am testing on same page and result is below: > > > > *This server is vulnerable to the POODLE attack. If possible, disable SSL > 3 to mitigate. Grade capped to C.* > > > > Regards. > > > > *From:* Mathieu Chateau [mailto:mathieu.chat...@lotp.fr] > *Sent:* Wednesday, June 17, 2015 2:13 PM > > > *To:* zenloadbalancer-support > *Subject:* Re: [Zenloadbalancer-support] ZEN poodle disable > > > > Hello, > > > > what is your zen version ? 3.0.5 ? > > Please test your ssl security from here (if exposed on internet): > > https://www.ssllabs.com/ssltest/index.html > > > > No way to get an "A" on Qualys, but my web site site is not poodle > friendly: > > *POODLE (SSLv3)* > > No, SSL 3 not supported (more info > <https://community.qualys.com/blogs/securitylabs/2014/10/15/ssl-3-is-dead-killed-by-the-poodle-attack> > ) > > *POODLE (TLS)* > > No (more info > <https://community.qualys.com/blogs/securitylabs/2014/12/08/poodle-bites-tls> > ) > > > > > Cordialement, > Mathieu CHATEAU > http://www.lotp.fr > > > > 2015-06-17 12:49 GMT+02:00 Emrah DALGIÇ <emrah.dal...@hititcs.com>: > > Hello Mathieu, > > > > I used your cipher but result is still vulnerable for poodle. > > > > Best Regards. > > > > *From:* Mathieu Chateau [mailto:mathieu.chat...@lotp.fr] > *Sent:* Wednesday, June 17, 2015 12:13 PM > *To:* zenloadbalancer-support > *Subject:* Re: [Zenloadbalancer-support] ZEN poodle disable > > > > Hello, > > > > to disable ssl v3 and get the highest security, set this custom cipher > > ECDHE-RSA-AES256-SHA384:AES256-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH:!AESGCM > > > > TLS v1.2 is not available as it's linked to openssl and we are stuck with > old one. > > > > > > > Cordialement, > Mathieu CHATEAU > http://www.lotp.fr > > > > 2015-06-17 10:43 GMT+02:00 Emrah DALGIÇ <emrah.dal...@hititcs.com>: > > Dear All, > > > > I want to disable SSLv3 and use TLSv1 and TLSv1.2. Could you please inform > me correct ciphers for https farm. > > > > Best Regards. > > *Emrah Dalgıç* > > > > Kisiye ozel bu mesaj ve icerigindeki bilgiler gizlidir. Hitit Bilgisayar > Hizmetleri bu mesajin icerigi ve ekleri ile ilgili olarak hukuksal hicbir > sorumluluk kabul etmez. Yetkili alicilardan biri degilseniz, bu mesajin > herhangi bir sekilde ifsa edilmesi, kullanilmasi, kopyalanmasi, yayilmasi > veya mesajda yeralan hususlarla ilgili olarak herhangi bir islem > yapilmasinin kesinlikle yasak oldugunu bildiririz. Boyle bir durumda lutfen > hemen mesajin gondericisini bilgilendiriniz ve mesaji sisteminizden > siliniz. Internet ortaminda gonderilen e-posta mesajlarindaki hata ve/veya > eksikliklerden veya viruslerden dolayi mesajin gondericisi herhangi bir > sorumluluk kabul etmemektedir. Tesekkur ederiz. The information contained > in this communication may contain confidential or legally privileged > information. Hitit Computer Services doesn't accept any legal > responsibility for the contents and attachments of this message. If you are > not the intended recipient you are hereby notified that any disclosure, > use, copying, distribution or taking any action in reliance on the contents > of this information is strictly prohibited. If you have received this > communication in error, please notify the sender immediately by responding > to this e-mail and then delete it from your system. The sender does not > accept any liability for any errors or omissions or any viruses in the > context of this message which arise as a result of internet transmission. > Thank you. > > > > ------------------------------------------------------------------------------ > > _______________________________________________ > Zenloadbalancer-support mailing list > Zenloadbalancer-support@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support > > > > Kisiye ozel bu mesaj ve icerigindeki bilgiler gizlidir. Hitit Bilgisayar > Hizmetleri bu mesajin icerigi ve ekleri ile ilgili olarak hukuksal hicbir > sorumluluk kabul etmez. Yetkili alicilardan biri degilseniz, bu mesajin > herhangi bir sekilde ifsa edilmesi, kullanilmasi, kopyalanmasi, yayilmasi > veya mesajda yeralan hususlarla ilgili olarak herhangi bir islem > yapilmasinin kesinlikle yasak oldugunu bildiririz. Boyle bir durumda lutfen > hemen mesajin gondericisini bilgilendiriniz ve mesaji sisteminizden > siliniz. Internet ortaminda gonderilen e-posta mesajlarindaki hata ve/veya > eksikliklerden veya viruslerden dolayi mesajin gondericisi herhangi bir > sorumluluk kabul etmemektedir. Tesekkur ederiz. The information contained > in this communication may contain confidential or legally privileged > information. Hitit Computer Services doesn't accept any legal > responsibility for the contents and attachments of this message. If you are > not the intended recipient you are hereby notified that any disclosure, > use, copying, distribution or taking any action in reliance on the contents > of this information is strictly prohibited. If you have received this > communication in error, please notify the sender immediately by responding > to this e-mail and then delete it from your system. The sender does not > accept any liability for any errors or omissions or any viruses in the > context of this message which arise as a result of internet transmission. > Thank you. > > > > ------------------------------------------------------------------------------ > > _______________________________________________ > Zenloadbalancer-support mailing list > Zenloadbalancer-support@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support > > > > Kisiye ozel bu mesaj ve icerigindeki bilgiler gizlidir. Hitit Bilgisayar > Hizmetleri bu mesajin icerigi ve ekleri ile ilgili olarak hukuksal hicbir > sorumluluk kabul etmez. Yetkili alicilardan biri degilseniz, bu mesajin > herhangi bir sekilde ifsa edilmesi, kullanilmasi, kopyalanmasi, yayilmasi > veya mesajda yeralan hususlarla ilgili olarak herhangi bir islem > yapilmasinin kesinlikle yasak oldugunu bildiririz. Boyle bir durumda lutfen > hemen mesajin gondericisini bilgilendiriniz ve mesaji sisteminizden > siliniz. Internet ortaminda gonderilen e-posta mesajlarindaki hata ve/veya > eksikliklerden veya viruslerden dolayi mesajin gondericisi herhangi bir > sorumluluk kabul etmemektedir. Tesekkur ederiz. The information contained > in this communication may contain confidential or legally privileged > information. Hitit Computer Services doesn't accept any legal > responsibility for the contents and attachments of this message. If you are > not the intended recipient you are hereby notified that any disclosure, > use, copying, distribution or taking any action in reliance on the contents > of this information is strictly prohibited. If you have received this > communication in error, please notify the sender immediately by responding > to this e-mail and then delete it from your system. The sender does not > accept any liability for any errors or omissions or any viruses in the > context of this message which arise as a result of internet transmission. > Thank you. > > > > ------------------------------------------------------------------------------ > > _______________________________________________ > Zenloadbalancer-support mailing list > Zenloadbalancer-support@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support > > > Kisiye ozel bu mesaj ve icerigindeki bilgiler gizlidir. Hitit Bilgisayar > Hizmetleri bu mesajin icerigi ve ekleri ile ilgili olarak hukuksal hicbir > sorumluluk kabul etmez. Yetkili alicilardan biri degilseniz, bu mesajin > herhangi bir sekilde ifsa edilmesi, kullanilmasi, kopyalanmasi, yayilmasi > veya mesajda yeralan hususlarla ilgili olarak herhangi bir islem > yapilmasinin kesinlikle yasak oldugunu bildiririz. Boyle bir durumda lutfen > hemen mesajin gondericisini bilgilendiriniz ve mesaji sisteminizden > siliniz. Internet ortaminda gonderilen e-posta mesajlarindaki hata ve/veya > eksikliklerden veya viruslerden dolayi mesajin gondericisi herhangi bir > sorumluluk kabul etmemektedir. Tesekkur ederiz. The information contained > in this communication may contain confidential or legally privileged > information. Hitit Computer Services doesn't accept any legal > responsibility for the contents and attachments of this message. If you are > not the intended recipient you are hereby notified that any disclosure, > use, copying, distribution or taking any action in reliance on the contents > of this information is strictly prohibited. If you have received this > communication in error, please notify the sender immediately by responding > to this e-mail and then delete it from your system. The sender does not > accept any liability for any errors or omissions or any viruses in the > context of this message which arise as a result of internet transmission. > Thank you. > > > ------------------------------------------------------------------------------ > > _______________________________________________ > Zenloadbalancer-support mailing list > Zenloadbalancer-support@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support > >
------------------------------------------------------------------------------
_______________________________________________ Zenloadbalancer-support mailing list Zenloadbalancer-support@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
