Major flaw in outdated but widely-used SSL protocol ( POODLE )

MrBrian · Oct 14, 2014

From http://www.zdnet.com/google-reveals-major-flaw-in-outdated-but-widely-used-ssl-protocol-7000034677/:

Google's Security Team revealed on Tuesday that the long obsolete, but still all too used, Secure Sockets Layer (SSL) 3.0 cryptographic protocol has a major security flaw.

According to the team's Bodo Möller: "This vulnerability allows the plaintext of secure connections to be calculated by a network attacker."
Click to expand...

ronjor · Oct 15, 2014

Published: 2014-10-14
Last Updated: 2014-10-15 04:40:18 UTC
by Johannes Ullrich (Version: 1)

SSLv3 had issues in the past. Remember the BEAST attack? It was never resolved (other then moving to TLS 1.1/2). The only alternative was to use a stream cipher like RC4, which had its own problems.
Click to expand...

https://isc.sans.edu/diary/OpenSSL: SSLv3 POODLE Vulnerability Official Release/18827

ronjor · Oct 15, 2014

Security experts warn of 'POODLE' attack against SSL 3.0

Experts say that SSL 3.0 should be disabled even though some legacy products still use it

Jeremy Kirk (IDG News Service) on 15 October, 2014 15:07
Click to expand...

http://www.cso.com.au/article/557439/security-experts-warn-poodle-attack-against-ssl-3-0/

ronjor · Oct 15, 2014

Mozilla will make Firefox 34 immune to POODLE, releases fix for older versions

By Mihaita Bamburic

Mozilla says that it is making Firefox 34 safe from POODLE by disabling SSL 3.0 by default. The code which does this is already baked into the Nightly channel, and will make its way to the Aurora and Beta channels also "in the next few weeks".
Click to expand...

http://betanews.com/2014/10/15/mozi...ne-to-poodle-releases-fix-for-older-versions/

Dermot7 · Oct 15, 2014

“This attack is really against clients—you have to worry about it if you’re in a place like Starbucks,” says Rob Graham, CEO of Erratasec. “If you’re at home there’s probably no one man-in-the-middling you except the NSA. So as a home user, you don’t need to panic. As a server [administrator], you probably don’t need to panic if your customers are coming in over home connections. Only if they’re coming in over [something like] a Starbucks Wi-Fi.”
Click to expand...

http://www.wired.com/2014/10/poodle-explained/

SSL 3.0 vulnerability discovered. Find out how to protect yourself

hawki · Oct 15, 2014

MicroSoft Advisory and Workarounds:

https://technet.microsoft.com/en-us/library/security/3009008.aspx

MrBrian · Oct 15, 2014

To disable SSL 3.0 protocol in Firefox, do either of these:
1. Use Mozilla's extension SSL Version Control.
2. Manual method: Set about:config setting security.tls.version.min = 1 .

ronjor · Oct 15, 2014

SSL Server Test

https://www.ssllabs.com/ssltest/

Victek · Oct 15, 2014

hawki said: ↑

MicroSoft Advisory and Workarounds:

https://technet.microsoft.com/en-us/library/security/3009008.aspx
Click to expand...

This workaround involves Group Policy Editor. For those using versions of Windows that don't include GPE simply go to Control Panel/Internet Options/Advanced/Security and uncheck the box for SSL 3.0 (SSL 2.0 should already be unchecked).

xxJackxx · Oct 15, 2014

Victek said: ↑

...For those using versions of Windows that don't include GPE simply go to Control Panel/Internet Options/Advanced/Security and uncheck the box for SSL 3.0 (SSL 2.0 should already be unchecked).
Click to expand...

Definitely the easier option. I just got done making that change on about 15 machines.

BoerenkoolMetWorst · Oct 15, 2014

To disable it in Chrome, you need to start it with a Command Flag:
--ssl-version-min=tls1

ronjor said: ↑

SSL Server Test

https://www.ssllabs.com/ssltest/
Click to expand...

The POODLE and SCSV Fallback tests are not yet implemented, but you can already use them on the Dev version:
https://dev.ssllabs.com/ssltest/

Victek · Oct 15, 2014

The word is Google will be releasing an update for Chrome to disable SSL 3.0, however users can immediately disable it by adding this string to a Chrome shortcut:

chrome.exe" -ssl-version-min=tls 1

Note I haven't actually tested this...

FanJ · Oct 15, 2014

Fox-IT blog:
http://blog.fox-it.com/2014/10/15/poodle/

Live blog on SSLv3 protocol vulnerability ‘POODLE’
Posted on October 15, 2014 by joostbijl

Google has announced the discovery of a protocol vulnerability in SSLv3. This vulnerability allows an attacker to read contents of connections secured by SSLv3.

SSLv3 is a Secure Sockets Layer (SSL) protocol that has been ratified in 1996. SSL is used to encrypt communications between clients and servers. It is usually integrated with webservers, mailservers or other software that use secure communications.

SSLv3 has been succeeded by TLS v1.0 in 1999 and later by TLS v1.1 and v1.2 in 2006 and 2008 respectively. SSLv3 is still supported on most servers for backward compatibility with old clients that have no TLS support such as Internet Explorer 6.
Click to expand...

Minimalist · Oct 15, 2014

The problem with Chrome is that those flags are not used if other application launches Chrome (let's say Outlook). I hope that they will add this option in settings in future release.

MrBrian · Oct 15, 2014

Websites in Alexa's top 1 million sites with SSL 3.0 support and without TLS support

Some POODLE notes

Rasheed187 · Oct 15, 2014

ronjor said: ↑

SSL Server Test

https://www.ssllabs.com/ssltest/
Click to expand...

You probably mean this site: https://www.ssllabs.com/ssltest/viewMyClient.html

It's quite easy to disable this in Opera Presto.

Minimalist · Oct 16, 2014

Is it a huge risk? Not really as it doesn’t allow any type of remote exploitation, it does however allow for SSLv3 Man-in-the-middle (MITM) attacks though – which is not good. It’s a fundamental design flaw in SSL/TLS which authenticates before encrypting.
Click to expand...

http://www.darknet.org.uk/2014/10/everything-need-know-poodle-sslv3-vulnerability/

anon · Oct 16, 2014

Rasheed187 said: ↑

You probably mean this site: https://www.ssllabs.com/ssltest/viewMyClient.html
Click to expand...

As a user, you want to protect yourself from attacks, and the best way to do that is to disable SSL 3 in your browser. (Instructions are easy to find online.) The updated SSL Labs Client Test will tell you if your change was successful.
..
..
For detailed guidance on how to disable SSL 3 in various servers and browsers, head to Scott Helme's blog post.

https://community.qualys.com/blogs/securitylabs/2014/10/15/ssl-3-is-dead-killed-by-the-poodle-attack
Click to expand...

How to check your Browser
If you want to check that your browser changes have definitely removed SSLv3.0 support there are a couple of sites that you can use. If you visit https://zmap.io/sslv3/ with SSLv3 enabled in your browser, you will see the warning message I'm getting here in Chrome where I haven't yet disabled SSLv3. To double check the site was working as expected, I disabled SSLv3 support in Internet Explorer and opened up the site there too. Here you can see the difference.

There's also the Qualys SSL Client Test to see what your browser supports.

https://scotthelme.co.uk/sslv3-goes-to-the-dogs-poodle-kills-off-protocol/
Click to expand...

JRViejo · Oct 16, 2014

Also: https://www.poodletest.com

https://isc.sans.edu/forums/diary/POODLE Turning off SSLv3 for various servers and client /18837

siljaline · Oct 16, 2014

How to know your Poodle better:
https://www.wired.com/2014/10/poodle-explained/

For those socially inclined - article author on Twitter:
https://twitter.com/KimZetter

ronjor · Oct 16, 2014

New OpenSSL updates fix POODLE, DoS bugs
Posted on 16 October 2014.

The OpenSSL Project has pushed out new releases of the popular homonymous open-source cryptographic library, which fix four serious vulnerabilities, including the POODLE (Padding Oracle On Downgraded Legacy Encryption) problem.
Click to expand...

http://www.net-security.org/secworld.php?id=17503

lotuseclat79 · Oct 16, 2014

How to secure your ISPConfig 3 server against the poodle SSL attack by Till Brehm.

In the following guide I will describe the steps to secure your server against the recent poodle SSL attack. I will use a ISPConfig 3 perfect server on Debian 7 for my examples, but the same steps will work on any other Linux Distribution as well. A default ISPConfig hosting server runs the following services: Webserver (Nginx or apache), Mailserver (Postfix and Dovecot / Courier), FTP-Server (pure-ftpd) that offer SSL / TLS connections and are potential targets for a poodle attack.

I assume that you are logged into your server as root user. If you work on Ubuntu and are not logged in as root, then prepend "sudo" to all commands or run "sudo -" to become root user.
Click to expand...

-- Tom

Veeshush · Oct 16, 2014

HTTPS Everywhere update disables SSL 3.

4.0.2 (2014-10-15)
* Disable SSL 3 to Prevent POODLE attack:
https://github.com/EFForg/https-everywhere/pull/674
Click to expand...

https://www.eff.org/files/Changelog.txt

MrBrian · Oct 17, 2014

Google’s POODLE affects oodles

ronjor · Oct 17, 2014

POODLE vulnerability in SSL 3.0
Original Release date: 17 Oct 2014 | Last revised: 17 Oct 2014

Overview

Many modern TLS clients can fall back to version 3.0 of the SSL protocol, which is vulnerable to a padding-oracle attack when Cypher-block chaining (CBC) mode is used. This is commonly referred to as the "POODLE" (Padding Oracle On Downgraded Legacy Encryption) attack.
Click to expand...

http://www.kb.cert.org/vuls/id/577193

Log in or Sign up

Major flaw in outdated but widely-used SSL protocol ( POODLE )

MrBrian Registered Member

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

Dermot7 Registered Member

hawki Registered Member

MrBrian Registered Member

ronjor Global Moderator

Victek Registered Member

xxJackxx Registered Member

BoerenkoolMetWorst Registered Member

Victek Registered Member

Attached Files:

Disable SSL 3 in Chrome.png

FanJ Updates Team

Minimalist Registered Member

MrBrian Registered Member

Rasheed187 Registered Member

Attached Files:

OSSL.png

Minimalist Registered Member

anon Registered Member

JRViejo Super Moderator

siljaline Registered Member

ronjor Global Moderator

lotuseclat79 Registered Member

Veeshush Registered Member

MrBrian Registered Member

ronjor Global Moderator

Log in or Sign up

Major flaw in outdated but widely-used SSL protocol ( POODLE )

MrBrian Registered Member

ronjor Global Moderator

ronjor Global Moderator

ronjor Global Moderator

Dermot7 Registered Member

hawki Registered Member

MrBrian Registered Member

ronjor Global Moderator

Victek Registered Member

xxJackxx Registered Member

BoerenkoolMetWorst Registered Member

Victek Registered Member

Attached Files:

Disable SSL 3 in Chrome.png

FanJ Updates Team

Minimalist Registered Member

MrBrian Registered Member

Rasheed187 Registered Member

Attached Files:

OSSL.png

Minimalist Registered Member

anon Registered Member

JRViejo Super Moderator

siljaline Registered Member

ronjor Global Moderator

lotuseclat79 Registered Member

Veeshush Registered Member

MrBrian Registered Member

ronjor Global Moderator

Useful Searches