Author Topic: Vulnerable to POODLE attack, podcatchers blocking https://media.blubrry.com  (Read 346 times)

scottdwest

  • Rookie
  • *
  • Posts: 1
According to SSL labs, https://media.blubrry.com still offers SSLv3 and is therefore vunerable to the (no so) recently descovered POODLE vunerability (read more).

Whilst the data that passes through this server is probably not that sensative, it does mean that some apps and podcast readers are refusing to fetch data from our servers because they pass through the vulnerable media.blubrry.com on the way to our correctly securred server.

angelo

  • CIO, RawVoice
  • Administrator
  • Hero Member
  • *****
  • Posts: 4483
We never setup the host media.blubrry.com with an SSL. We do have a SSL certificate setup but it was not intended for production as the current implementation requires Server Name Indication.

I will contact you directly to find out why you need SSL for the media URL.