CVE-2014-3566: Removing SSLv3 from BIG-IP

The POODLE (CVE-214-03566) vulnerability can force a client to negotiate SSLv3 instead of TLSv1.x ciphers. Then a BEAST-like attack can be conducted against SSLv3 to obtain information from the encry...
Updated Mar 18, 2022
Version 2.0
security
Wand_97484's avatar
Wand_97484
Icon for Nimbostratus rankNimbostratus
Oct 17, 2014
If you are scared you could redirect Clients connected via SSLv3 to a error page: when HTTP_REQUEST { if { [SSL::cipher version] eq "SSLv3" } { HTTP::respond 302 Location "http://errorURL" noserver } }