Customer Alert: POODLE Vulnerability
Secure Sockets Layer (SSL) protocol is primarily used to encrypt traffic between a browser and website.
Google’s security team has recommended that businesses disable SSLv3.0 immediately and use TLS 1.1 or 1.2 in order to avoid the problem. As an individual, it is recommended that you disable SSLv3.0 in your browser immediately to secure yourself when surfing websites that still support SSLv3.0. There currently is no patch for this, and SSLv3.0 is considered to have reached the end of its useful life and should be retired.
CSID has disabled SSLv3.0 across all our network traffic. We strongly advise that CSID customers take similar action to immediately disable SSLv3.0 in your environments and use an alternative encryption mechanism.
For more information on the POODLE vulnerability, visit the Red Hat Security Blog.