SALES: 978-250-1800 SUPPORT: 978-250-8355 [email protected]

The poodle vulnerability is an issue with SSL 3.0.  Currently the best workaround is to disable SSL 3 on web servers.

There is an online SSL checker at
https://ssltools.thawte.com/checker/views/certCheck.jsp

Biscom’s linux appliance should not be affected as it uses an older version of openssl that does not support SSL 3.

The steps to disable SSL 3 support on windows are in this link:
https://technet.microsoft.com/library/security/3009008.aspx

The first to options disable SSL per client, so that is not a global solution. The third option disables it at the server version and is included below:

• Disable SSL 3.0 in Windows

You can disable support for the SSL 3.0 protocol on Windows by following these steps:
1. Click Start, click Run, type regedt32 or type regedit, and then click OK.
2. In Registry Editor, locate the following registry key:
HKey_Local_MachineSystemCurrentControlSetControlSecurityProviders SCHANNELProtocolsSSL 3.0Server
Note: If the complete registry key path does not exist, you can create it by expanding the available keys and using the New -> Key option from the Edit menu.
3. On the Edit menu, click Add Value.
4. In the Data Type list, click DWORD.
5. In the Value Name box, type Enabled, and then click OK.
Note: If this value is present, double-click the value to edit its current value.
6. Type 00000000 in Binary Editor to set the value of the new key equal to “0”.
7. Click OK. Restart the computer.

Note: This workaround will disable SSL 3.0 for all server software installed on a system, including IIS.

Note: After applying this workaround, clients that rely only on SSL 3.0 will not be able to communicate with the server.