|
From: | Ángel González |
Subject: | Re: [Bug-wget] please remove SSLv3 from being used until explicitly specified |
Date: | Thu, 16 Oct 2014 22:01:35 +0200 |
User-agent: | Thunderbird |
Ángel González wrote:
First of all, note that wget doesn't react to a disconnect with a downgraded retry thus it is mainly not vulnerable to poodle (you could only use CVE-2014-3566 against serversNote I tested both openssl and gnutls builds. Then I rebuilt 1.15¹ with both libraries usingnot supporting TLS).
versions prior to poodle announcement. None of them was affected.¹ I am having some problem with src/Makefile generation, so I didn't test with master, but that
should be equivalent.
[Prev in Thread] | Current Thread | [Next in Thread] |