2014-10-17 18:00 GMT+04:00 <ma...@apache.org>: > Author: markt > Date: Fri Oct 17 14:00:49 2014 > New Revision: 1632580 > > URL: http://svn.apache.org/r1632580 > Log: > Proposal > > Modified: > tomcat/tc6.0.x/trunk/STATUS.txt
> > +* Mitigate POODLE by disabling SSLv3 by default > + http://people.apache.org/~markt/patches/2014-10-17-poodle-tc6-v1.patch > + +1: markt > + -1: I think that filtering by protocol.contains("SSL") in NioEndpoint also disables "SSLv2Hello". I am OK with that. Just noting in case it needs to be documented. Best regards, Konstantin Kolinko --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
