diff options
| author | Nick Mathewson <nickm@torproject.org> | 2014-10-16 09:08:09 -0400 |
|---|---|---|
| committer | Nick Mathewson <nickm@torproject.org> | 2014-10-16 09:08:09 -0400 |
| commit | c1c83eb376a7c89fadb01d1c7082d4aa4125333d (patch) | |
| tree | 8c5357ad0e16ca6fb3f3f78c285627efd1c7b7dc /changes/disable_sslv3 | |
| parent | 0eec8e2aa51f779e458fb3831b0ed8ae1db896ec (diff) | |
| parent | af73d3e4d83ba7f404068008ad617e02b8a0a77b (diff) | |
| download | tor-c1c83eb376a7c89fadb01d1c7082d4aa4125333d.tar.gz tor-c1c83eb376a7c89fadb01d1c7082d4aa4125333d.zip | |
Merge branch 'no_sslv3_023' into maint-0.2.3
Diffstat (limited to 'changes/disable_sslv3')
| -rw-r--r-- | changes/disable_sslv3 | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/changes/disable_sslv3 b/changes/disable_sslv3 new file mode 100644 index 0000000000..bb4c2df7a2 --- /dev/null +++ b/changes/disable_sslv3 @@ -0,0 +1,4 @@ + o Major security fixes: + - Disable support for SSLv3. All versions of OpenSSL in use with + Tor today support TLS 1.0 or later, so we can safely turn off + support for this old (and insecure) protocol. Fixes bug 13426. |