[Pidgin] #15861: Disable SSLv3

Pidgin trac at pidgin.im
Mon Feb 16 16:13:22 EST 2015

#15861: Disable SSLv3
 Reporter:  fedor.brunner  |       Owner:  deryni
     Type:  defect         |      Status:  new
Milestone:                 |   Component:  XMPP
  Version:  2.10.7         |  Resolution:
 Keywords:                 |

Comment (by datallah):

 POODLE isn't relevant to Pidgin because there's no capability to downgrade
 TLS versions.

 A bounty isn't really necessary for this (and it's somewhat already done).

 As of 2.10.11, it is possible to disable SSLv3 via the "NSS Prefs" plugin
 (if you're using NSS) or PURPLE_GNUTLS_PRIORITIES environment variable (if
 you're using gnutls).
 See #8061.

 The unreleased development version (which will become 3.0.0 some day)
 already disables SSLv3 (#15909).

Ticket URL: <https://developer.pidgin.im/ticket/15861#comment:6>
Pidgin <https://pidgin.im>

More information about the Tracker mailing list