Author: Nigel Rantor Date: To: users Subject: Re: [bitfolk] SSL POODLE (CVE-2014-3566) vulnerabilities amongst
the customer base
On 09/12/14 19:39, Andy Smith wrote: > I still don't want to be opening tickets with people individually
> over this so unless there is an outrage against the idea then I'm
> thinking of just posting next Tuesday's report here. It only takes a
> few seconds to scan all of BitFolk's IP space anyway and there are
> multiple scripts published to do so (including the one linked
> above).
I don't mind that report being posted here, but, like others have said,
I have disabled SSLv3 on nginx now so am not worried about it.
Also, if they haven't gotten around to fixing their machines they are
probably more likely to *not* be paying attention to this mailing list.
