CVE-2014-3566: Removing SSLv3 from BIG-IP

The POODLE (CVE-214-03566) vulnerability can force a client to negotiate SSLv3 instead of TLSv1.x ciphers. Then a BEAST-like attack can be conducted against SSLv3 to obtain information from the encry...
Updated Mar 18, 2022
Version 2.0
security
ckwok's avatar
ckwok
Icon for Nimbostratus rankNimbostratus
Nov 19, 2015
I think sslv3 is removed from v11.5.3 onwards. I tried enable "no sslv3" it still returns "secure renegotiation IS NOT suppported" when I run "openssl s_client -connect target:port -ssl3"