equal
deleted
inserted
replaced
|
1 Disable SSLv2 and SSLv3 in elinks to "mitigate POODLE vulnerability". |
|
2 |
|
3 This change will be passed upstream. |
|
4 |
|
5 --- elinks-0.11.7/src/network/ssl/ssl.c.orig 2014-12-17 12:23:16.239844159 -0800 |
|
6 +++ elinks-0.11.7/src/network/ssl/ssl.c 2015-01-06 05:41:07.668610655 -0800 |
|
7 @@ -58,6 +58,7 @@ |
|
8 SSLeay_add_ssl_algorithms(); |
|
9 context = SSL_CTX_new(SSLv23_client_method()); |
|
10 SSL_CTX_set_options(context, SSL_OP_ALL); |
|
11 + SSL_CTX_set_options(context, SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3); |
|
12 SSL_CTX_set_default_verify_paths(context); |
|
13 } |
|
14 |