Forum Discussion

Cirrostratus

Oct 16, 2014

SSL Downgrade attack prevention

Hi, As we know SSLv3 Poodle Vulnerability is in news now. And F5 has officially announced its mitigation by not using SSLv3. Just as thought can we mitigate it by stopping SSL downgrade. That is TLS_FALLBACK_SCSV should not be supported. ?

1 Reply

BinaryCanary_19
Historic F5 Account
Oct 18, 2014
On the F5 currently, you can only disable SSLv3 (and any older protocols if you wish to explicitly do so). TLS_FALLBACK_SCSV is not yet supported.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SSL Downgrade attack prevention

1 Reply

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Does F5 Rules for AWS WAF - Common Vulnerabilities & Exposures Mitigate Log4J vulnerabilities

Credentialed Scanning - F5OS - Rseries

WebSocket connection to 'wss://...' failed: Invalid frame header

f5 asm reporting aggregate

rSeries 4600 additional Core Enable

Related Content

Post-Quantum Cryptography, OpenSSH, & s1ngularity supply chain attack

Prevent some SQL attacks

Exploit PowerShell, Ransomware Attack Report, Active Cyber Defense, Attack to GPS

The HTTP/2 CONTINUATION frame attack

Operationlizing Online Fraud Detection, Prevention, and Response

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS