planetwatt.com

Help and Support => Archives => wattOS R8 => Topic started by: biffster on October 16, 2014, 01:12:02 AM

Title: Poodle vulnerability
Post by: biffster on October 16, 2014, 01:12:02 AM

I have posted info on the poodle vulnerability and the various browsers it impacts. Link is on my personal blog - shots and info are from windows, but the basics are the same and do impact Linux also and you can fix firefox and chrome the same way.

Chrome you change the .desktop Exec=/usr/bin/google-chrome-stable --ssl-version-min=tls1 %U

Firefox - follow the other instructions already mentioned.

http://cpufu.com/?p=37 (http://cpufu.com/?p=37)

Title: Re: Poodle vulnerability
Post by: leenie on October 16, 2014, 12:47:24 PM

Are there instructions for Qupzilla Browser?

I found it: open menu, go to internet, right click Qupzilla, select properties. In file properties window select desktop entry tab.
Replace command with "qupzilla --ssl-version-min=tls1 %u" without quotes of course.

Title: Re: Poodle vulnerability
Post by: blaze on October 16, 2014, 02:18:39 PM

Many thanks!  8)

Title: Re: Poodle vulnerability
Post by: BALLOON a.k.a. Fu-sen. on October 17, 2014, 05:37:45 AM

Chromium has a method to include an option in a file.

Please open file /etc/chromium/default in root authority,
and add --ssl-version-min=tls1 to the line of CHROMIUM_FLAGS:

Code: [Select]

CHROMIUM_FLAGS="--password-store=detect"to:

Code: [Select]

CHROMIUM_FLAGS="--password-store=detect --ssl-version-min=tls1"