SSL/TLS这些年的那些洞

FREAK Attack

CVE-2015-0204

[bash]openssl s_client -connect www.akamai.com:443 -cipher EXPORT[/bash]
References
State Machine AttACKs against TLS (SMACK TLS)
Akamai Addresses CVE 2015-0204 Vulnerability
A Few Thoughts on Cryptographic Engineering

Poodle Attack

CVE-2014-3566
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0\Client],然后添加一个 DWORD 值“Enabled”,并设为 0。

HeartBleed

CVE-2014-0160

References

HeartBleed.com
mozilla SSL guide

Leave a comment

Your email address will not be published. Required fields are marked *