SSL V3 Vulnerability in HTTP Repository Access.

From: Mohsin <mohsinchandia_at_gmail.com>
Date: Sat, 25 Oct 2014 15:26:10 -0700 (PDT)

HI All,

We are using HTTP protocol for repository access
(http://abc.svn.com/svn/Repo/) over the internet for this case we are using
tortoise svn client V 1.8.7 which is dependent on serf and serf is using SSL
V3 . I just read serf version 1.3.5 is using SSL V3 and in serf 1.3.5 SSL V3
is enabled . Serf had released latest version 1.3.8 in which SSL V3 is
disabled . So should I upgrade serf version on my server because I have
compiled my svn with serf V 1.3.5 or there is no issue ?

regards
Mohsin

--
View this message in context: http://subversion.1072662.n5.nabble.com/SSL-V3-Vulnerability-in-HTTP-Repository-Access-tp190716.html
Sent from the Subversion Users mailing list archive at Nabble.com.

Received on 2014-10-26 00:26:38 CEST

This message: [ Message body ]
Next message: Andreas Stieger: "Re: SSL V3 Vulnerability in HTTP Repository Access."
Previous message: Mohsin: "Re: restricting certain users to read a particular folders in the Repo"
Next in thread: Andreas Stieger: "Re: SSL V3 Vulnerability in HTTP Repository Access."
Reply: Andreas Stieger: "Re: SSL V3 Vulnerability in HTTP Repository Access."

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]