We thought that we could rest for a while after taking care of the POODLE issue but then a team of security experts found out a critical Drupal issue (SA-CORE-2014-005) which is described here. We were able to fix this issue in time by applying the following recommended patch and clearing the cache: foreach (array_filter($args, ‘is_array’) […]
Month: October 2014
This POODLE Bites (CVE-2014-3566)
As you might be aware, the POODLE (Padding Oracle On Downgraded Legacy Encryption) issue has hit users, like us, who use SSLv3 (Secure Socket Layer Version 3). As always, we were prompt in addressing the issue and have disabled the SSLv3 protocol on the Elastic Load Balancers and will be supporting TLS (Transport Layer Security) […]