[issue22638] ssl module: the SSLv3 protocol is vulnerable ("POODLE" attack)
Donald Stufft
report at bugs.python.org
Wed Oct 15 01:21:01 CEST 2014
Donald Stufft added the comment:
I don't know, how many times will it have to be repeated that secure defaults matter?
SSL 3.0 can be turned back on easily enough, it isn't a hard shut off. It changes the default just like what was done with SSLv2.0.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue22638>
_______________________________________
More information about the Python-bugs-list
mailing list