Security: PEPS is vulnerable to a POODLE attack, as it has SSL v3 enabled

Security: PEPS is vulnerable to a POODLE attack, as it has enabled SSL v3

Opening: `https://www.ssllabs.com/ssltest/analyze.html?d=` + `<domain with PEPS>` scans the server for security risks.

A simple way to fix this would be to enable simple direct HTTP access and then letting users put a termination TLS proxy (as a HAProxy) instead of implementing TPS in PEPS' code. 

It would also be simpler to configure encryption with Let's Encrypt using an additional proxy than trying to update the certificates used by PEPS in its implementation of TLS.

![ssllabs-peps](https://cloud.githubusercontent.com/assets/1326112/23037328/fd02f70a-f453-11e6-893e-1a56c6370a50.png)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Security: PEPS is vulnerable to a POODLE attack, as it has SSL v3 enabled #77

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Security: PEPS is vulnerable to a POODLE attack, as it has SSL v3 enabled #77

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions