[ejabberd] poodle and linux versions

Konstantin Khomoutov flatworm at users.sourceforge.net
Thu Oct 16 19:35:23 MSK 2014


On Thu, 16 Oct 2014 05:32:32 -0700
Randy Bush <randy at psg.com> wrote:

> running 2.1.11 on ubuntu
> want to deal with poodle
> instructions we found are for 14.07
> should we build 14.07 on a debian and move to it?
> i.e. is this constructive forward progress?

If you're not ready for the switch yet, you should be able to patch
and rebuild stock ejabberd package from Ubuntu.

For instance, [1] might be of interest for you:

- #define CIPHERS "DEFAULT:!EXPORT:!LOW:!SSLv2"
+ #define CIPHERS "DEFAULT:!EXPORT:!LOW:!SSLv2:!SSLv3"

should do the trick according to [2].

Personally, I'd wait for 14.XY to be imported from Debian (there, it's
already in "testing").

1. https://github.com/processone/ejabberd/blob/2.1.x/src/tls/tls_drv.c#L47
2. http://askubuntu.com/a/537197


More information about the ejabberd mailing list