Skip to content

Commit

Permalink
Prevent POODLE vulnerability in HAProxy router
Browse files Browse the repository at this point in the history 
HAProxy 1.5.14 is now available and used by the router image.
  • Loading branch information
@elyscape
elyscape committed Feb 25, 2016
1 parent 2b7b4bb commit 0ea0d1b
Showing 1 changed file with 1 addition and 2 deletions.
3 changes: 1 addition & 2 deletions images/router/haproxy/conf/haproxy-config.template
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,8 +14,7 @@ global
stats timeout 2m

# Prevent vulnerability to POODLE attacks
# TODO: use when 1.5.14 is available
# ssl-default-bind-options no-sslv3
ssl-default-bind-options no-sslv3

# Modern cipher suite (no legacy browser support) from https://wiki.mozilla.org/Security/Server_Side_TLS
# tune.ssl.default-dh-param 2048
Expand Down

0 comments on commit 0ea0d1b

Please sign in to comment.