pidgin.im Needs Major Security Update: CVE-2014-0224
William Rolison
williamrolison at gmail.com
Fri Jun 13 14:10:28 EDT 2014
Hi,
pidgin.im Needs Major Security Update: CVE-2014-0224
"This server is vulnerable to the OpenSSL CCS vulnerability
(CVE-2014-0224) and exploitable."
See full report @ https://www.ssllabs.com/ssltest/analyze.html?d=pidgin.im
While you at it, please drop RC4, add Robust Forward Secrecy, and
enable Strict Transport Security (HSTS).
Thanks,
Will
--
_________________________________
Contact Info:
Name: William Rolison
E-Mail: williamrolison at gmail.com
Cell Phone: (803) 753-8824
More information about the security
mailing list