Hi, > Are you also looking to have a fix for the POODLE vulnerability?
The only fix for the POODLE vulnerability is to disable SSLv3 (I'm going to send a patch for that in a moment). However, if you meant TLS_FALLBACK_SCSV, then it's not needed, because nginx doesn't do "downgrade dance". Best regards, Piotr Sikora _______________________________________________ nginx-devel mailing list [email protected] http://mailman.nginx.org/mailman/listinfo/nginx-devel
