Skip to content

Heartbleed, Shellshock and now Poodlebleed: are we safe on the web?

Updated: at 11:26 PM

Use this online test to check your server then use Firefox and set security.tls.version.min to 1

Luke Rehmann explains:

Poodlebleed is a vulnerability in the design of SSL version 3.0. Poodle is actually an acronym for Padding Oracle On Downgraded Legacy Encryption. The vulnerability allows the decryption to plaintext of secure connections. The bug was discovered by Google Security Team researcher Bodo Möller in collaboration with Thai Duong and Krzysztof Kotowicz.