CVE-2014-3566 (POODLE), OpenSSL CVE-2014-3566 Man In The Middle Information Disclosure Vulnerability

Fix.md

Fix for POODLE attack

Web server

Apache

1. Edit '/etc/apache2/mods-enabled/ssl.conf'

SSLProtocol all -SSLv2 -SSLv3

2. Retart Apache

Mail server

Postfix

1. Edit

postconf -e 'smtpd_tls_mandatory_protocols=!SSLv2,!SSLv3'
postconf -e 'smtpd_tls_protocols=!SSLv2,!SSLv3'
stconf -e 'smtp_tls_protocols=!SSLv2,!SSLv3'

2. Restart Postfix

Dovecot

1. Edit '/etc/dovecot/dovecot.conf' or '/etc/dovecot/conf.d/10-ssl.conf'

ssl_protocols = !SSLv2 !SSLv3

2. Restart Dovecot