[lug] Colorado Bureau of Investigation
George Sexton
georges at mhsoftware.com
Fri Jan 23 11:24:03 MST 2015
On 1/23/2015 11:13 AM, Robert Racansky wrote:
> On Fri, Jan 23, 2015 at 8:54 AM, George Sexton <georges at mhsoftware.com> wrote:
>> On 1/23/2015 8:48 AM, Robert Racansky wrote:
>>
>> Researching this, I found out that "Chrome 40 is removing SSLv3
>> support since it's been shown to be broken. Please contact the site's
>> administrators and ask them to update their SSL stack."
>>
>>
>> One of our customers is the South Carolina Department of Natural Resources
>> and they're hitting the same issue.
>>
>
> Here's a one-stop source for information about the issue --
> https://disablessl3.com/ "This web page aims to become a one-stop
> resource on how to effectively disable SSLv3 in major web browsers as
> well as in web, mail and other servers that may still be using it."
>
>
>
>
> Testing this with Windows 10 Technical Preview edition using Internet
> Explorer v 11.0.9879.0 , the CBI Insta Check web page works.
>
> If Microsoft has not disabled SSLv3 in Internet Explorer, that would
> explain why the CBI hasn't gotten widespread calls about this
> (assuming most shops are using Internet Explorer). Those dealers that
> do call are told it's a client side and not a server side problem.
> It's also working in Safari, but not Google Chrome 40 or Firefox 34
> (both which have disabled SSL v3).
The South Carolina site has this page:
http://www.dnr.sc.gov/browsers.html
which lists IE and Safari as working.
--
George Sexton
*MH Software, Inc.*
Voice: 303 438 9585
http://www.mhsoftware.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.lug.boulder.co.us/pipermail/lug/attachments/20150123/23dd0268/attachment.html>
More information about the LUG
mailing list