Slashdot Mirror


POODLE Flaw Returns, This Time Hitting TLS Protocol

angry tapir writes: If you patched your sites against a serious SSL flaw discovered in October you will have to check them again. Researchers have discovered that the POODLE vulnerability also affects implementations of the newer TLS protocol. The POODLE (Padding Oracle On Downgraded Legacy Encryption) vulnerability allows attackers who manage to intercept traffic between a user's browser and an HTTPS website to decrypt sensitive information, like the user's authentication cookies.

1 of 54 comments (clear)

  1. After the jump BULLSHIT by Anonymous Coward · · Score: -1, Flamebait

    Can't anybody just post the damn direct link to the fucking advisory or source articles anymore.
    What the fuck, you and the entire internet are a bunch of clickbait advertising whores.
    Nobody gives a shit about your boring intermediate links and your revenue ads and sorry ass escuses for journalistic middlemen articles.
    We want the goods.