[Operators] SSLv3 is out.

Christoph Gebhardt chris at exosphere.de
Wed Oct 15 08:59:02 UTC 2014


Quoting Jonas Wielicki (2014-10-15 09:47:23)
> I’m not confident that this attack is (like BEAST and CRIME) relevant
> for XMPP.

But is SSLv3 relevant in the XMPP world?
In the web world this is a problem with ancient Internet Explorers on
Windows XP machines, everything else supports TLS, at least according
to ssllabs.com.

Does anyone know of any XMPP client that needs the server to offer SSLv3?

Regards,
  Chris
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: signature
URL: <http://mail.jabber.org/pipermail/operators/attachments/20141015/ca02ca7e/attachment.sig>


More information about the Operators mailing list