use of SSLv3 in Koji
Mátyás Selmeci
matyas at cs.wisc.edu
Thu Oct 16 23:06:57 UTC 2014
On 10/16/14 17:44, Kevin Fenzi wrote:
> On Thu, 16 Oct 2014 16:58:48 -0500
> Mátyás Selmeci <matyas at cs.wisc.edu> wrote:
>
>> Hi,
>> It looks like Koji is hardcoded to use SSLv3 (looking at
>> CreateSSLContext() in koji/SSLCommon.py) and does not work if SSLv3
>> is disabled in the apache configs of koji-hub. Are there any plans to
>> change that, in light of the POODLE SSLv3 vulnerability?
>> Thanks,
> Yes, but it turns out there's no cause for undue haste...
>
> https://lists.fedoraproject.org/pipermail/infrastructure/2014-October/014992.html
>
> kevin
Okay, thank you!
-Mat
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3521 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.fedoraproject.org/pipermail/buildsys/attachments/20141016/b3eddd7c/attachment.p7s>
More information about the buildsys
mailing list