{"id":6492,"date":"2014-11-30T07:29:11","date_gmt":"2014-11-30T07:29:11","guid":{"rendered":"https:\/\/dev.railscarma.com\/poodle-ssl-security-threat-explored\/"},"modified":"2022-08-30T07:32:51","modified_gmt":"2022-08-30T07:32:51","slug":"poodle-ssl-sakerhetshot-utforskat-2","status":"publish","type":"post","link":"https:\/\/www.railscarma.com\/sv\/blogg\/tekniska-artiklar\/poodle-ssl-sakerhetshot-utforskat-2\/","title":{"rendered":"Pudel \u2013 SSL-s\u00e4kerhetshot unders\u00f6kt"},"content":{"rendered":"<div data-elementor-type=\"wp-post\" data-elementor-id=\"6492\" class=\"elementor elementor-6492\" data-elementor-post-type=\"post\">\n\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-3800d95d elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"3800d95d\" data-element_type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-69f90962\" data-id=\"69f90962\" data-element_type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-343fe574 elementor-widget elementor-widget-text-editor\" data-id=\"343fe574\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p style=\"text-align: justify;\"><strong>Pudel<\/strong>&nbsp;\u00e4r en hundras med ben som liknar sockervadd. Den \u00e4r intelligent och en vanlig stapelvara p\u00e5 hundutst\u00e4llningar. \u00c4ven de mest v\u00e4nliga hundarna har en ben\u00e4genhet att bita. Nu ser vi alla typer av s\u00e4kerhetsvarningar och snafus gillar heartbleed och shell shock!!! Det senaste tillskottet \u00e4r PUDLE.<\/p>\n<p style=\"text-align: justify;\">\n<\/p><p style=\"text-align: justify;\">Allt detta b\u00f6rjade n\u00e4r ett team i google utvecklade och testade en attack med namnet <strong>PUDEL<\/strong>&nbsp;(Padding Oracle On Downgraded Legacy Encryption) som avsl\u00f6jade s\u00e5rbarhet i Secure Sockets Layer (SSL) version 3-protokoll eller kort sagt SSLv3.<\/p>\n<p style=\"text-align: justify;\">SSLv3 \u00e4r en f\u00f6r\u00e5ldrad men fortfarande anv\u00e4nd kryptering i b\u00e5de \u00e4ldre och nya webbl\u00e4sare. (SSLv3 \u00e4r ett 18 \u00e5r gammalt protokoll som ersattes av TLS-protokollet)<\/p>\n<p style=\"text-align: justify;\">POODLE f\u00f6rs\u00f6ker tvinga anslutningen mellan din webbl\u00e4sare och servern att nedgradera till SSLv3. POODLE-attacken drar f\u00f6rdel av protokollversionsf\u00f6rhandlingsfunktionen inbyggd i SSL\/TLS f\u00f6r att tvinga fram anv\u00e4ndningen av SSL 3.0 och anv\u00e4nder sedan denna nya s\u00e5rbarhet f\u00f6r att dekryptera valt inneh\u00e5ll i SSL-sessionen. Dekrypteringen g\u00f6rs byte f\u00f6r byte och kommer att generera ett stort antal anslutningar mellan klienten och servern.<\/p>\n<p style=\"text-align: justify;\"><strong>Hur g\u00f6r dom det?<\/strong><\/p>\n<p style=\"text-align: justify;\">En angripare kan k\u00f6ra en JavaScript-agent p\u00e5 en webbplats f\u00f6r att f\u00e5 offrets webbl\u00e4sare att skicka en cookie med HTTPS-f\u00f6rfr\u00e5gningar till&nbsp;<b>https:\/\/xyz.com<\/b>, f\u00e5nga upp och \u00e4ndra SSL-posterna som skickas av webbl\u00e4saren p\u00e5 ett s\u00e5dant s\u00e4tt att det finns en icke f\u00f6rsumbar chans att xyz.com kommer att acceptera den modifierade posten. Om den \u00e4ndrade posten accepteras kan angriparen dekryptera en byte av cookies. Sm\u00e5kakor<\/p>\n<p style=\"text-align: justify;\">TLS 1.0 och nyare versioner utf\u00f6r mer robust validering av dekrypterade data och \u00e4r som s\u00e5dana inte mottagliga f\u00f6r samma problem. Men f\u00f6r SSLv3 finns det ingen l\u00f6sning.<\/p>\n<p style=\"text-align: justify;\"><strong>Hur illa \u00e4r det h\u00e4r och hur p\u00e5verkar det dig?<\/strong><\/p>\n<p style=\"text-align: justify;\">S\u00e4kra anslutningar anv\u00e4nder fr\u00e4mst TLS (efterf\u00f6ljaren till SSL), de flesta anv\u00e4ndare blir s\u00e5rbara eftersom webbl\u00e4sare och servrar kommer att nedgradera till SSLv3 om det finns problem med att f\u00f6rhandla en TLS-session. De flesta SSL\/TLS-implementeringar f\u00f6rblir bak\u00e5tkompatibla med SSL 3.0 f\u00f6r att samverka med \u00e4ldre system f\u00f6r att f\u00e5 en smidig anv\u00e4ndarupplevelse. En angripare som utf\u00f6r en man-in-the-middle-attack kan utl\u00f6sa en protokollnedgradering till SSLv3 och utnyttja denna s\u00e5rbarhet f\u00f6r att dekryptera en delm\u00e4ngd av den krypterade kommunikationen och extrahera information fr\u00e5n den. POODLE-s\u00e5rbarheten fungerar bara om klientens webbl\u00e4sare och serverns anslutning b\u00e5da st\u00f6der SSLv3.<\/p>\n<p style=\"text-align: justify;\"><strong>Hur testar jag om min webbl\u00e4sare \u00e4r s\u00e5rbar?<\/strong><\/p>\n<p style=\"text-align: justify;\">G\u00e5 till webbplatsen poodletest.com f\u00f6r att testa detta. Om du ser en pudel \u00e4r du s\u00e5rbar. Om du ser en Springfield Terrier \u00e4r du s\u00e4ker.<\/p>\n<p style=\"text-align: justify;\">http:\/\/www.bolet.org\/TestSSLServer\/<br>http:\/\/code.google.com\/p\/sslaudit\/<\/p>\n<p style=\"text-align: justify;\"><strong>Vad kan jag g\u00f6ra f\u00f6r att f\u00f6rhindra detta? Pudelvaccin?<\/strong><\/p>\n<p style=\"text-align: justify;\">Som slutanv\u00e4ndare, inaktivera SSLv3-st\u00f6d i din webbl\u00e4sare. Om det \u00e4r inaktiverat kan POODLE INTE nedgradera din webbl\u00e4sare till det. F\u00f6r att uppmuntra b\u00e4sta metoder f\u00f6r s\u00e4kerhet rekommenderar jag starkt att du anv\u00e4nder den h\u00f6gsta versionen av TLS. F\u00f6r de flesta webbl\u00e4sare b\u00f6r detta vara TLS 1.2.<strong><strong><br><\/strong><\/strong><\/p>\n<p style=\"text-align: justify;\"><strong>Kommer detta att p\u00e5verka min surfupplevelse?<strong><br><\/strong><\/strong><\/p>\n<p style=\"text-align: justify;\">Detta kommer att p\u00e5verka vissa \u00e4ldre webbl\u00e4sare. Webbplatser som redan har avslutat st\u00f6det f\u00f6r SSLv3 kommer att bli inkompatibla med \u00e4ldre webbl\u00e4sare och operativsystem. Gamla webbl\u00e4sare som Internet Explorer 6 som k\u00f6rs p\u00e5 Windows XP eller \u00e4ldre versioner kommer att se ett SSL-anslutningsfel.<\/p>\n<p style=\"text-align: justify;\"><strong>SSL v3<\/strong>&nbsp;kommer att inaktiveras som standard i framtida versioner av m\u00e5nga webbl\u00e4sare.<\/p>\n<p style=\"text-align: justify;\"><strong>Hur inaktiverar man detta p\u00e5 servern?<\/strong><\/p>\n<p style=\"text-align: justify;\">CloudFlare meddelade att de inaktiverade SSLv3 som standard fr\u00e5n sina servrar. Det gjorde m\u00e5nga tj\u00e4nsteleverant\u00f6rer ocks\u00e5.<\/p>\n<p style=\"text-align: justify;\">Om du k\u00f6r Apache, g\u00f6r bara denna \u00e4ndring i din konfiguration bland de andra SSL-direktiven:<\/p>\n<p style=\"text-align: justify;\">SSLProtocol All -SSLv2 -SSLv3<\/p>\n<p style=\"text-align: justify;\">Detta inaktiverar SSL-protokollet version 2 och 3.<\/p>\n<p style=\"text-align: justify;\"><strong>Hur kan utvecklare f\u00f6rhindra detta?<\/strong><strong><strong><br><\/strong><\/strong><\/p>\n<p style=\"text-align: justify;\"><b>.NETTO<\/b><\/p>\n<p style=\"text-align: justify;\">Anv\u00e4nd egenskapen SecurityProtocol f\u00f6r att aktivera TLS.<\/p>\n<p style=\"text-align: justify;\">F\u00f6r information om hur du anv\u00e4nder SecurityProtocol-egenskapen, bes\u00f6k:<\/p>\n<p style=\"text-align: justify;\">http:\/\/msdn.microsoft.com\/en-us\/library\/system.net.servicepointmanager.securityprotocol(v=vs.110).as&#8230;<\/p>\n<p style=\"text-align: justify;\">http:\/\/msdn.microsoft.com\/en-us\/library\/system.net.securityprotocoltype(v=vs.110).aspx<\/p>\n<p style=\"text-align: justify;\">Som ett exempel, f\u00f6r att tvinga fram TLS 1.2 i en C# .NET-implementering, skulle du anv\u00e4nda:<\/p>\n<p style=\"text-align: justify;\">System.Net.ServicePointManager.SecurityProtocol = System.Net.SecurityProtocolType.Tls12;<\/p>\n<p style=\"text-align: justify;\"><b>JAVA<\/b><\/p>\n<p style=\"text-align: justify;\">OBS: TLS 1.2 st\u00f6ddes f\u00f6rst i JDK 7 och kommer att vara standard i JDK 8: https:\/\/blogs.oracle.com\/java-platform-group\/entry\/java_8_will_use_tls<\/p>\n<p style=\"text-align: justify;\"><strong>Anv\u00e4nd metoden SSLContext.getInstance f\u00f6r att aktivera TLS.<\/strong><\/p>\n<p style=\"text-align: justify;\"><strong>Mer information om hur du anv\u00e4nder metoden SSLContext.getInstance finns p\u00e5:<\/strong><\/p>\n<p style=\"text-align: justify;\">http:\/\/docs.oracle.com\/javase\/7\/docs\/api\/javax\/net\/ssl\/SSLContext.html#getInstance(java.lang.String)<\/p>\n<p style=\"text-align: justify;\">http:\/\/docs.oracle.com\/javase\/7\/docs\/api\/javax\/net\/ssl\/SSLContext.html#getInstance(java.lang.String,&#8230;<\/p>\n<p style=\"text-align: justify;\">http:\/\/docs.oracle.com\/javase\/7\/docs\/technotes\/guides\/security\/StandardNames.html#SSLContext<\/p>\n<p style=\"text-align: justify;\">Om du till exempel vill anv\u00e4nda standardleverant\u00f6ren f\u00f6r s\u00e4kerhetslager f\u00f6r att aktivera TLS, skulle du anv\u00e4nda:<\/p>\n<p style=\"text-align: justify;\">object = SSLContext.getInstance(\u201cTLS\u201d);<\/p>\n<p style=\"text-align: justify;\"><strong>F\u00f6r att tvinga fram TLS 1.2 n\u00e4r du anv\u00e4nder Suns Java Secure Socket Extension (JSSE), skulle du anv\u00e4nda:<\/strong><\/p>\n<p style=\"text-align: justify;\">object = SSLConnect.getInstance(\u201cTLSv1.2\u201d, \u201cSunJSEE\u201d);<\/p>\n<p style=\"text-align: justify;\"><b>ringla<\/b><strong><strong><br><\/strong><\/strong><\/p>\n<p style=\"text-align: justify;\">Anv\u00e4nd alternativet CURLOPT_SSLVERSION f\u00f6r att aktivera TLS.<\/p>\n<p style=\"text-align: justify;\">Mer information om hur du anv\u00e4nder alternativet CURLOPT_SSLVERSION finns p\u00e5:<\/p>\n<p style=\"text-align: justify;\">http:\/\/curl.haxx.se\/libcurl\/c\/CURLOPT_SSLVERSION.html<\/p>\n<p style=\"text-align: justify;\">Som ett exempel, f\u00f6r att tvinga cURL att anv\u00e4nda TLS 1.0 eller senare, skulle du anv\u00e4nda:<\/p>\n<p style=\"text-align: justify;\">C\/C++\/C#:<\/p>\n<p style=\"text-align: justify;\">curl_easy_setopt(curl, CURLOPT_SSLVERSION, CURL_SSLVERSION_TLSv1);<\/p>\n<p style=\"text-align: justify;\">PHP:<\/p>\n<p style=\"text-align: justify;\">curl_setopt($curl_request, CURLOPT_SSLVERSION, CURL_SSLVERSION_TLSv1);<\/p>\n<p style=\"text-align: justify;\">I cURL 7.34.0 eller senare, f\u00f6r att tvinga fram TLS 1.2, skulle du anv\u00e4nda:<\/p>\n<p style=\"text-align: justify;\">C\/C++\/C#:<\/p>\n<p style=\"text-align: justify;\">curl_easy_setopt(curl, CURLOPT_SSLVERSION, CURL_SSLVERSION_TLSv1_2);<\/p>\n<p style=\"text-align: justify;\">PHP:<\/p>\n<p style=\"text-align: justify;\">curl_setopt($curl_request, CURLOPT_SSLVERSION, CURL_SSLVERSION_TLSv1_2);<\/p>\n<p style=\"text-align: justify;\"><a href=\"https:\/\/www.railscarma.com\/sv\/\" target=\"_blank\" rel=\"noopener noreferrer\"><strong>RailsCarma<\/strong><\/a> teamet rustat upp i fullt f\u00f6rsvarsl\u00e4ge f\u00f6r att t\u00e4ppa till alla h\u00e5l som l\u00e4mnades \u00f6ppna av denna s\u00e5rbarhet. Vi till\u00e4mpade de n\u00f6dv\u00e4ndiga korrigeringarna p\u00e5 v\u00e5ra applikationer f\u00f6r att inaktivera os\u00e4kra SSL\/TLS-alternativ.<\/p>\n<h3 style=\"text-align: justify;\"><strong>Referenser<\/strong><\/h3>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/community.developer.authorize.net\/t5\/The-Authorize-Net-Developer-Blog\/Important-POODLE-Information-Updated\/ba-p\/48163\">http:\/\/community.developer.authorize.net\/t5\/The-Authorize-Net-Developer-Blog\/Important-POODLE-Information-Updated\/ba-p\/48163<\/a><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/arstechnica.com\/security\/2014\/10\/ssl-broken-again-in-poodle-attack\/\">http:\/\/arstechnica.com\/security\/2014\/10\/ssl-broken-again-in-poodle-attack\/<\/a><\/p>\n<p style=\"text-align: justify;\"><a href=\"https:\/\/zmap.io\/sslv3\/\">https:\/\/zmap.io\/sslv3\/<\/a><\/p>\n<p style=\"text-align: justify;\"><a href=\"https:\/\/www.imperialviolet.org\/2014\/10\/14\/poodle.html\">https:\/\/www.imperialviolet.org\/2014\/10\/14\/poodle.html<\/a><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/blog.cryptographyengineering.com\/2014\/10\/attack-of-week-poodle.html\">http:\/\/blog.cryptographyengineering.com\/2014\/10\/attack-of-week-poodle.html<\/a><\/p>\n<p style=\"text-align: justify;\"><a href=\"https:\/\/blog.mozilla.org\/security\/2014\/10\/14\/the-poodle-attack-and-the-end-of-ssl-3-0\/\">https:\/\/blog.mozilla.org\/security\/2014\/10\/14\/the-poodle-attack-and-the-end-of-ssl-3-0\/<\/a><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.theregister.co.uk\/2014\/10\/16\/poodle_analysis\/\">http:\/\/www.theregister.co.uk\/2014\/10\/16\/poodle_analysis\/<\/a><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.theregister.co.uk\/2014\/10\/14\/google_drops_ssl_30_poodle_vulnerability\/\">http:\/\/www.theregister.co.uk\/2014\/10\/14\/google_drops_ssl_30_poodle_vulnerability\/<\/a><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.pcworld.com\/article\/2834015\/security-experts-warn-of-poodle-attack-against-ssl-30.html\">http:\/\/www.pcworld.com\/article\/2834015\/security-experts-warn-of-poodle-attack-against-ssl-30.html<\/a><\/p>\n<p style=\"text-align: justify;\">http:\/\/www.alertlogic.com\/blog\/poodle-man-middle-attack-sslv3\/<\/p>\n<p style=\"text-align: justify;\"><a href=\"https:\/\/www.us-cert.gov\/ncas\/alerts\/TA14-290A\">https:\/\/www.us-cert.gov\/ncas\/alerts\/TA14-290A<\/a><\/p>\n<p style=\"text-align: justify;\"><a href=\"https:\/\/www.openssl.org\/~bodo\/ssl-poodle.pdf\">https:\/\/www.openssl.org\/~bodo\/ssl-poodle.pdf<\/a><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.makeuseof.com\/tag\/stop-poodle-from-biting-your-browser\/\">http:\/\/www.makeuseof.com\/tag\/stop-poodle-from-biting-your-browser\/<\/a><\/p>\n<p style=\"text-align: justify;\"><a href=\"https:\/\/community.qualys.com\/blogs\/securitylabs\/2014\/10\/15\/ssl-3-is-dead-killed-by-the-poodle-attack\">https:\/\/community.qualys.com\/blogs\/securitylabs\/2014\/10\/15\/ssl-3-is-dead-killed-by-the-poodle-attack<\/a><\/p>\n<h3 style=\"text-align: justify;\"><\/h3>\n<h3 style=\"text-align: justify;\"><strong>Inaktiverar pudel<\/strong><\/h3>\n<p style=\"text-align: justify;\"><a href=\"https:\/\/www.linode.com\/docs\/security\/security-patches\/disabling-sslv3-for-poodle\">https:\/\/www.linode.com\/docs\/security\/security-patches\/disabling-sslv3-for-poodle<\/a><\/p>\n<p style=\"text-align: justify;\"><a href=\"http:\/\/askubuntu.com\/questions\/537196\/how-do-i-patch-workaround-sslv3-poodle-vulnerability-cve-2014-3566\">http:\/\/askubuntu.com\/questions\/537196\/how-do-i-patch-workaround-sslv3-poodle-vulnerability-cve-2014-3566<\/a><\/p>\n<p><a href=\"\/sv\/kontakta-oss\/\">Kontakta oss.<\/a><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-18abb3a8 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"18abb3a8\" data-element_type=\"section\" data-settings=\"{&quot;background_background&quot;:&quot;classic&quot;}\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-20ff2b60\" data-id=\"20ff2b60\" data-element_type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-738ca7ed elementor-widget elementor-widget-heading\" data-id=\"738ca7ed\" data-element_type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">Prenumerera f\u00f6r de senaste uppdateringarna<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-3ca92304 elementor-widget elementor-widget-shortcode\" data-id=\"3ca92304\" data-element_type=\"widget\" data-widget_type=\"shortcode.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-shortcode\">\t\t\t\t\t<script type=\"text\/javascript\">\n\t\t\t\t\t\tvar gCaptchaSibWidget;\n                        var onloadSibCallbackInvisible = function () {\n\n                            var element = document.getElementsByClassName('sib-default-btn');\n                            var countInvisible = 0;\n                            var indexArray = [];\n                            jQuery('.sib-default-btn').each(function (index, el) {\n                                if ((jQuery(el).attr('id') == \"invisible\")) {\n                                    indexArray[countInvisible] = index;\n                                    countInvisible++\n                                }\n                            });\n\n                            jQuery('.invi-recaptcha').each(function (index, el) {\n                                grecaptcha.render(element[indexArray[index]], {\n                                    'sitekey': jQuery(el).attr('data-sitekey'),\n                                    'callback': sibVerifyCallback,\n                                });\n                            });\n                        };\n\t\t\t\t\t<\/script>\n\t\t\t\t\t                <script src=\"https:\/\/www.google.com\/recaptcha\/api.js?onload=onloadSibCallbackInvisible&render=explicit\" async defer><\/script>\n\t\t\t\t\n\t\t\t<form id=\"sib_signup_form_1\" method=\"post\" class=\"sib_signup_form\" action=\"\">\n\t\t\t\t<div class=\"sib_loader\" style=\"display:none;\"><img\n\t\t\t\t\t\t\tsrc=\"https:\/\/www.railscarma.com\/wp-includes\/images\/spinner.gif\" alt=\"lastare\"><\/div>\n\t\t\t\t<input type=\"hidden\" name=\"sib_form_action\" value=\"subscribe_form_submit\">\n\t\t\t\t<input type=\"hidden\" name=\"sib_form_id\" value=\"1\">\n                <input type=\"hidden\" name=\"sib_form_alert_notice\" value=\"Please fill out this field\">\n                <input type=\"hidden\" name=\"sib_form_invalid_email_notice\" value=\"Your email address is invalid\">\n                <input type=\"hidden\" name=\"sib_security\" value=\"ec95fb1fc4\">\n\t\t\t\t<div class=\"sib_signup_box_inside_1\">\n\t\t\t\t\t<div style=\"\/*display:none*\/\" class=\"sib_msg_disp\">\n\t\t\t\t\t<\/div>\n                                            <div id=\"sib_captcha_invisible\" class=\"invi-recaptcha\" data-sitekey=\"6LdikOAaAAAAAJ6SWrrKVQrtw7TQpQAEnv0HS0G3\"><\/div>\n                    \t\t\t\t\t<p class=\"sib-email-area\">\r\n    <label class=\"sib-email-area\"><\/label>\r\n    <input type=\"email\" class=\"sib-email-area\" name=\"email\" required=\"required\" placeholder=\"E-postadress\">\r\n<\/p>\r\n<p class=\"sib-NAME-area\">\r\n    <label class=\"sib-NAME-area\"><\/label>\r\n    <input type=\"text\" class=\"sib-NAME-area\" name=\"NAME\" placeholder=\"namn\">\r\n<\/p>\r\n<p>\r\n    <input type=\"submit\" id=\"invisible\" class=\"sib-default-btn\" value=\"Prenumerera\">\r\n<\/p>\t\t\t\t<\/div>\n\t\t\t<input type=\"hidden\" name=\"trp-form-language\" value=\"sv\"\/><\/form>\n\t\t\t<style>\n\t\t\t\tform#sib_signup_form_1 p.sib-alert-message {\n    padding: 6px 12px;\n    margin-bottom: 20px;\n    border: 1px solid transparent;\n    border-radius: 4px;\n    -webkit-box-sizing: border-box;\n    -moz-box-sizing: border-box;\n    box-sizing: border-box;\n}\nform#sib_signup_form_1 p.sib-alert-message-error {\n    background-color: #f2dede;\n    border-color: #ebccd1;\n    color: #a94442;\n}\nform#sib_signup_form_1 p.sib-alert-message-success {\n    background-color: #dff0d8;\n    border-color: #d6e9c6;\n    color: #3c763d;\n}\nform#sib_signup_form_1 p.sib-alert-message-warning {\n    background-color: #fcf8e3;\n    border-color: #faebcc;\n    color: #8a6d3b;\n}\n\t\t\t<\/style>\n\t\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t  <div class=\"related-post slider\">\r\n        <div class=\"headline\">relaterade inl\u00e4gg<\/div>\r\n    <div class=\"post-list owl-carousel\">\r\n\r\n            <div class=\"item\">\r\n            <div class=\"thumb post_thumb\">\r\n    <a  title=\"Kaminari Gem\" href=\"https:\/\/www.railscarma.com\/sv\/blogg\/tekniska-artiklar\/kaminari-parla\/?related_post_from=37277\">\r\n\r\n      <img decoding=\"async\" width=\"800\" height=\"300\" src=\"https:\/\/www.railscarma.com\/wp-content\/uploads\/2023\/04\/kaminari-gem.jpg\" class=\"attachment-full size-full wp-post-image\" alt=\"kaminari p\u00e4rla\" srcset=\"https:\/\/www.railscarma.com\/wp-content\/uploads\/2023\/04\/kaminari-gem.jpg 800w, https:\/\/www.railscarma.com\/wp-content\/uploads\/2023\/04\/kaminari-gem-300x113.jpg 300w, https:\/\/www.railscarma.com\/wp-content\/uploads\/2023\/04\/kaminari-gem-768x288.jpg 768w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/>\r\n\r\n    <\/a>\r\n  <\/div>\r\n\r\n  <a class=\"title post_title\"  title=\"Kaminari Gem\" href=\"https:\/\/www.railscarma.com\/sv\/blogg\/tekniska-artiklar\/kaminari-parla\/?related_post_from=37277\">\r\n        Kaminari Gem  <\/a>\r\n\r\n        <\/div>\r\n              <div class=\"item\">\r\n            <div class=\"thumb post_thumb\">\r\n    <a  title=\"Varf\u00f6r anst\u00e4lla Ruby on Rails-utvecklare 2026?\" href=\"https:\/\/www.railscarma.com\/sv\/blogg\/ror\/varfor-anlita-utvecklare-av-ruby-on-rails\/?related_post_from=30627\">\r\n\r\n      <img decoding=\"async\" width=\"800\" height=\"300\" src=\"https:\/\/www.railscarma.com\/wp-content\/uploads\/2019\/01\/why-to-hire-ruby-on-rails-developers-in-2022.jpg\" class=\"attachment-full size-full wp-post-image\" alt=\"varf\u00f6r anlita utvecklare av ruby on rails 2022\" srcset=\"https:\/\/www.railscarma.com\/wp-content\/uploads\/2019\/01\/why-to-hire-ruby-on-rails-developers-in-2022.jpg 800w, https:\/\/www.railscarma.com\/wp-content\/uploads\/2019\/01\/why-to-hire-ruby-on-rails-developers-in-2022-300x113.jpg 300w, https:\/\/www.railscarma.com\/wp-content\/uploads\/2019\/01\/why-to-hire-ruby-on-rails-developers-in-2022-768x288.jpg 768w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/>\r\n\r\n    <\/a>\r\n  <\/div>\r\n\r\n  <a class=\"title post_title\"  title=\"Varf\u00f6r anst\u00e4lla Ruby on Rails-utvecklare 2026?\" href=\"https:\/\/www.railscarma.com\/sv\/blogg\/ror\/varfor-anlita-utvecklare-av-ruby-on-rails\/?related_post_from=30627\">\r\n        Varf\u00f6r anst\u00e4lla Ruby on Rails-utvecklare 2026?  <\/a>\r\n\r\n        <\/div>\r\n              <div class=\"item\">\r\n            <div class=\"thumb post_thumb\">\r\n    <a  title=\"Betydelsen av mjukvaruarkitektur vid utveckling av f\u00f6retagsmjukvara\" href=\"https:\/\/www.railscarma.com\/sv\/blogg\/ror\/vikten-av-mjukvaruarkitektur-i-foretagsutveckling-av-programvara\/?related_post_from=36250\">\r\n\r\n      <img decoding=\"async\" width=\"800\" height=\"300\" src=\"https:\/\/www.railscarma.com\/wp-content\/uploads\/2022\/06\/Importance-of-Software-Architecture-in-enterprise-software-development.jpg\" class=\"attachment-full size-full wp-post-image\" alt=\"Betydelsen av mjukvaruarkitektur vid utveckling av f\u00f6retagsmjukvara\" srcset=\"https:\/\/www.railscarma.com\/wp-content\/uploads\/2022\/06\/Importance-of-Software-Architecture-in-enterprise-software-development.jpg 800w, https:\/\/www.railscarma.com\/wp-content\/uploads\/2022\/06\/Importance-of-Software-Architecture-in-enterprise-software-development-300x113.jpg 300w, https:\/\/www.railscarma.com\/wp-content\/uploads\/2022\/06\/Importance-of-Software-Architecture-in-enterprise-software-development-768x288.jpg 768w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/>\r\n\r\n    <\/a>\r\n  <\/div>\r\n\r\n  <a class=\"title post_title\"  title=\"Betydelsen av mjukvaruarkitektur vid utveckling av f\u00f6retagsmjukvara\" href=\"https:\/\/www.railscarma.com\/sv\/blogg\/ror\/vikten-av-mjukvaruarkitektur-i-foretagsutveckling-av-programvara\/?related_post_from=36250\">\r\n        Betydelsen av mjukvaruarkitektur vid utveckling av f\u00f6retagsmjukvara  <\/a>\r\n\r\n        <\/div>\r\n              <div class=\"item\">\r\n            <div class=\"thumb post_thumb\">\r\n    <a  title=\"Ruby IDE: De b\u00e4sta IDE:erna f\u00f6r Ruby on Rails Development\" href=\"https:\/\/www.railscarma.com\/sv\/blogg\/ror\/ruby-ide-de-basta-ideerna-for-ruby-on-rails-utveckling\/?related_post_from=36125\">\r\n\r\n      <img decoding=\"async\" width=\"800\" height=\"300\" src=\"https:\/\/www.railscarma.com\/wp-content\/uploads\/2022\/01\/BEST-IDES-FOR-RUBY-ON-RAILS-DEVELOPMENT.jpg\" class=\"attachment-full size-full wp-post-image\" alt=\"B\u00c4STA ID\u00c9ER F\u00d6R UTVECKLING AV RUBY ON RAIL\" srcset=\"https:\/\/www.railscarma.com\/wp-content\/uploads\/2022\/01\/BEST-IDES-FOR-RUBY-ON-RAILS-DEVELOPMENT.jpg 800w, https:\/\/www.railscarma.com\/wp-content\/uploads\/2022\/01\/BEST-IDES-FOR-RUBY-ON-RAILS-DEVELOPMENT-300x113.jpg 300w, https:\/\/www.railscarma.com\/wp-content\/uploads\/2022\/01\/BEST-IDES-FOR-RUBY-ON-RAILS-DEVELOPMENT-768x288.jpg 768w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/>\r\n\r\n    <\/a>\r\n  <\/div>\r\n\r\n  <a class=\"title post_title\"  title=\"Ruby IDE: De b\u00e4sta IDE:erna f\u00f6r Ruby on Rails Development\" href=\"https:\/\/www.railscarma.com\/sv\/blogg\/ror\/ruby-ide-de-basta-ideerna-for-ruby-on-rails-utveckling\/?related_post_from=36125\">\r\n        Ruby IDE: De b\u00e4sta IDE:erna f\u00f6r Ruby on Rails Development  <\/a>\r\n\r\n        <\/div>\r\n      \r\n  <\/div>\r\n\r\n  <script>\r\n      <\/script>\r\n  <style>\r\n    .related-post {}\r\n\r\n    .related-post .post-list {\r\n      text-align: left;\r\n          }\r\n\r\n    .related-post .post-list .item {\r\n      margin: 10px;\r\n      padding: 10px;\r\n          }\r\n\r\n    .related-post .headline {\r\n      font-size: 14px !important;\r\n      color: #999999 !important;\r\n          }\r\n\r\n    .related-post .post-list .item .post_thumb {\r\n      max-height: 220px;\r\n      margin: 10px 0px;\r\n      padding: 0px;\r\n      display: block;\r\n          }\r\n\r\n    .related-post .post-list .item .post_title {\r\n      font-size: 14px;\r\n      color: #000000;\r\n      margin: 10px 0px;\r\n      padding: 0px;\r\n      display: block;\r\n      text-decoration: none;\r\n          }\r\n\r\n    .related-post .post-list .item .post_excerpt {\r\n      font-size: 12px;\r\n      color: #3f3f3f;\r\n      margin: 10px 0px;\r\n      padding: 0px;\r\n      display: block;\r\n      text-decoration: none;\r\n          }\r\n\r\n    .related-post .owl-dots .owl-dot {\r\n          }\r\n\r\n      <\/style>\r\n      <script>\r\n      jQuery(document).ready(function($) {\r\n        $(\".related-post .post-list\").owlCarousel({\r\n          items: 2,\r\n          responsiveClass: true,\r\n          responsive: {\r\n            0: {\r\n              items: 1,\r\n            },\r\n            768: {\r\n              items: 2,\r\n            },\r\n            1200: {\r\n              items: 2,\r\n            }\r\n          },\r\n                      rewind: true,\r\n                                loop: true,\r\n                                center: false,\r\n                                autoplay: true,\r\n            autoplayHoverPause: true,\r\n                                nav: true,\r\n            navSpeed: 1000,\r\n            navText: ['<i class=\"fas fa-chevron-left\"><\/i>', '<i class=\"fas fa-chevron-right\"><\/i>'],\r\n                                dots: false,\r\n            dotsSpeed: 1200,\r\n                                                    rtl: false,\r\n          \r\n        });\r\n      });\r\n    <\/script>\r\n  <\/div>","protected":false},"excerpt":{"rendered":"<p>Pudel \u00e4r en hundras med ben som liknar bomullsgodis. Den \u00e4r intelligent och ett vanligt inslag p\u00e5 hundutst\u00e4llningar. \u00c4ven de mest v\u00e4nliga hundar har en ben\u00e4genhet att bita. Nu ser vi alla typer av s\u00e4kerhetsvarningar och snafus som heartbleed och shell shock !!! Det senaste i till\u00e4gg \u00e4r POODLE. Detta \u00e4r allt ...<\/p>\n<p class=\"read-more\"> <a class=\"\" href=\"https:\/\/www.railscarma.com\/sv\/blogg\/how-to-build-a-scalable-saas-platform-using-ruby-on-rails\/\"> <span class=\"screen-reader-text\">Hur man bygger en skalbar SaaS-plattform med Ruby on Rails<\/span> L\u00e4s mer \u00bb<\/a><\/p>","protected":false},"author":1,"featured_media":32075,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[384],"tags":[609,513,610],"class_list":["post-6492","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technical-articles","tag-security-threats","tag-ssl","tag-sslv3"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v26.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Poodle: SSL Security Threat Explored - RailsCarma Blog<\/title>\n<meta name=\"description\" content=\"The POODLE attack takes advantage of the protocol version negotiation feature built into SSL\/TLS to force the use of SSL 3.0 and then uses this new vulnerability to decrypt select content within the SSL session\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.railscarma.com\/sv\/blogg\/tekniska-artiklar\/poodle-ssl-sakerhetshot-utforskat-2\/\" \/>\n<meta property=\"og:locale\" content=\"sv_SE\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Poodle: SSL Security Threat Explored - RailsCarma Blog\" \/>\n<meta property=\"og:description\" content=\"The POODLE attack takes advantage of the protocol version negotiation feature built into SSL\/TLS to force the use of SSL 3.0 and then uses this new vulnerability to decrypt select content within the SSL session\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.railscarma.com\/sv\/blogg\/tekniska-artiklar\/poodle-ssl-sakerhetshot-utforskat-2\/\" \/>\n<meta property=\"og:site_name\" content=\"RailsCarma - Ruby on Rails Development Company specializing in Offshore Development\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/RailsCarma\/\" \/>\n<meta property=\"article:published_time\" content=\"2014-11-30T07:29:11+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-08-30T07:32:51+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.railscarma.com\/wp-content\/uploads\/2014\/11\/POODLE-SSLv3-RC.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"644\" \/>\n\t<meta property=\"og:image:height\" content=\"292\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"admin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@railscarma\" \/>\n<meta name=\"twitter:site\" content=\"@railscarma\" \/>\n<meta name=\"twitter:label1\" content=\"Skriven av\" \/>\n\t<meta name=\"twitter:data1\" content=\"admin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Ber\u00e4knad l\u00e4stid\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minuter\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/\"},\"author\":{\"name\":\"admin\",\"@id\":\"https:\/\/www.railscarma.com\/#\/schema\/person\/5f2228a2dec7549056e709de6eb85d21\"},\"headline\":\"Poodle \u2013 SSL Security Threat Explored\",\"datePublished\":\"2014-11-30T07:29:11+00:00\",\"dateModified\":\"2022-08-30T07:32:51+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/\"},\"wordCount\":1085,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.railscarma.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.railscarma.com\/wp-content\/uploads\/2014\/11\/POODLE-SSLv3-RC.jpg\",\"keywords\":[\"security threats\",\"SSL\",\"sslv3\"],\"articleSection\":[\"Technical Articles\"],\"inLanguage\":\"sv-SE\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/\",\"url\":\"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/\",\"name\":\"Poodle: SSL Security Threat Explored - RailsCarma Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.railscarma.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.railscarma.com\/wp-content\/uploads\/2014\/11\/POODLE-SSLv3-RC.jpg\",\"datePublished\":\"2014-11-30T07:29:11+00:00\",\"dateModified\":\"2022-08-30T07:32:51+00:00\",\"description\":\"The POODLE attack takes advantage of the protocol version negotiation feature built into SSL\/TLS to force the use of SSL 3.0 and then uses this new vulnerability to decrypt select content within the SSL session\",\"breadcrumb\":{\"@id\":\"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#breadcrumb\"},\"inLanguage\":\"sv-SE\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"sv-SE\",\"@id\":\"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#primaryimage\",\"url\":\"https:\/\/www.railscarma.com\/wp-content\/uploads\/2014\/11\/POODLE-SSLv3-RC.jpg\",\"contentUrl\":\"https:\/\/www.railscarma.com\/wp-content\/uploads\/2014\/11\/POODLE-SSLv3-RC.jpg\",\"width\":644,\"height\":292},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.railscarma.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Poodle \u2013 SSL Security Threat Explored\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.railscarma.com\/#website\",\"url\":\"https:\/\/www.railscarma.com\/\",\"name\":\"RailsCarma - Ruby on Rails Development Company specializing in Offshore Development\",\"description\":\"RailsCarma is a Ruby on Rails Development Company in Bangalore. We specialize in Offshore Ruby on Rails Development based out in USA and India. Hire experienced Ruby on Rails developers for the ultimate Web Experience.\",\"publisher\":{\"@id\":\"https:\/\/www.railscarma.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.railscarma.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"sv-SE\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.railscarma.com\/#organization\",\"name\":\"RailsCarma\",\"url\":\"https:\/\/www.railscarma.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"sv-SE\",\"@id\":\"https:\/\/www.railscarma.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.railscarma.com\/wp-content\/uploads\/2020\/08\/railscarma_logo.png\",\"contentUrl\":\"https:\/\/www.railscarma.com\/wp-content\/uploads\/2020\/08\/railscarma_logo.png\",\"width\":200,\"height\":46,\"caption\":\"RailsCarma\"},\"image\":{\"@id\":\"https:\/\/www.railscarma.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/RailsCarma\/\",\"https:\/\/x.com\/railscarma\",\"https:\/\/www.linkedin.com\/company\/railscarma\/\",\"https:\/\/myspace.com\/railscarma\",\"https:\/\/in.pinterest.com\/railscarma\/\",\"https:\/\/www.youtube.com\/channel\/UCx3Wil-aAnDARuatTEyMdpg\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.railscarma.com\/#\/schema\/person\/5f2228a2dec7549056e709de6eb85d21\",\"name\":\"admin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"sv-SE\",\"@id\":\"https:\/\/www.railscarma.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/308867ca6c81f3aba146080c601000087180326f752c4116849ea9f514c6a4fa?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/308867ca6c81f3aba146080c601000087180326f752c4116849ea9f514c6a4fa?s=96&d=mm&r=g\",\"caption\":\"admin\"},\"sameAs\":[\"https:\/\/www.railscarma.com\/hire-ruby-on-rails-developer\/\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Pudel: SSL Security Threat Explored - RailsCarma Blog","description":"POODLE-attacken drar f\u00f6rdel av protokollversionsf\u00f6rhandlingsfunktionen inbyggd i SSL\/TLS f\u00f6r att tvinga fram anv\u00e4ndningen av SSL 3.0 och anv\u00e4nder sedan denna nya s\u00e5rbarhet f\u00f6r att dekryptera valt inneh\u00e5ll i SSL-sessionen","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.railscarma.com\/sv\/blogg\/tekniska-artiklar\/poodle-ssl-sakerhetshot-utforskat-2\/","og_locale":"sv_SE","og_type":"article","og_title":"Poodle: SSL Security Threat Explored - RailsCarma Blog","og_description":"The POODLE attack takes advantage of the protocol version negotiation feature built into SSL\/TLS to force the use of SSL 3.0 and then uses this new vulnerability to decrypt select content within the SSL session","og_url":"https:\/\/www.railscarma.com\/sv\/blogg\/tekniska-artiklar\/poodle-ssl-sakerhetshot-utforskat-2\/","og_site_name":"RailsCarma - Ruby on Rails Development Company specializing in Offshore Development","article_publisher":"https:\/\/www.facebook.com\/RailsCarma\/","article_published_time":"2014-11-30T07:29:11+00:00","article_modified_time":"2022-08-30T07:32:51+00:00","og_image":[{"width":644,"height":292,"url":"https:\/\/www.railscarma.com\/wp-content\/uploads\/2014\/11\/POODLE-SSLv3-RC.jpg","type":"image\/jpeg"}],"author":"admin","twitter_card":"summary_large_image","twitter_creator":"@railscarma","twitter_site":"@railscarma","twitter_misc":{"Skriven av":"admin","Ber\u00e4knad l\u00e4stid":"5 minuter"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#article","isPartOf":{"@id":"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/"},"author":{"name":"admin","@id":"https:\/\/www.railscarma.com\/#\/schema\/person\/5f2228a2dec7549056e709de6eb85d21"},"headline":"Poodle \u2013 SSL Security Threat Explored","datePublished":"2014-11-30T07:29:11+00:00","dateModified":"2022-08-30T07:32:51+00:00","mainEntityOfPage":{"@id":"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/"},"wordCount":1085,"commentCount":0,"publisher":{"@id":"https:\/\/www.railscarma.com\/#organization"},"image":{"@id":"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#primaryimage"},"thumbnailUrl":"https:\/\/www.railscarma.com\/wp-content\/uploads\/2014\/11\/POODLE-SSLv3-RC.jpg","keywords":["security threats","SSL","sslv3"],"articleSection":["Technical Articles"],"inLanguage":"sv-SE","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/","url":"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/","name":"Pudel: SSL Security Threat Explored - RailsCarma Blog","isPartOf":{"@id":"https:\/\/www.railscarma.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#primaryimage"},"image":{"@id":"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#primaryimage"},"thumbnailUrl":"https:\/\/www.railscarma.com\/wp-content\/uploads\/2014\/11\/POODLE-SSLv3-RC.jpg","datePublished":"2014-11-30T07:29:11+00:00","dateModified":"2022-08-30T07:32:51+00:00","description":"POODLE-attacken drar f\u00f6rdel av protokollversionsf\u00f6rhandlingsfunktionen inbyggd i SSL\/TLS f\u00f6r att tvinga fram anv\u00e4ndningen av SSL 3.0 och anv\u00e4nder sedan denna nya s\u00e5rbarhet f\u00f6r att dekryptera valt inneh\u00e5ll i SSL-sessionen","breadcrumb":{"@id":"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#breadcrumb"},"inLanguage":"sv-SE","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/"]}]},{"@type":"ImageObject","inLanguage":"sv-SE","@id":"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#primaryimage","url":"https:\/\/www.railscarma.com\/wp-content\/uploads\/2014\/11\/POODLE-SSLv3-RC.jpg","contentUrl":"https:\/\/www.railscarma.com\/wp-content\/uploads\/2014\/11\/POODLE-SSLv3-RC.jpg","width":644,"height":292},{"@type":"BreadcrumbList","@id":"https:\/\/www.railscarma.com\/blog\/technical-articles\/poodle-ssl-security-threat-explored-2\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.railscarma.com\/"},{"@type":"ListItem","position":2,"name":"Poodle \u2013 SSL Security Threat Explored"}]},{"@type":"WebSite","@id":"https:\/\/www.railscarma.com\/#website","url":"https:\/\/www.railscarma.com\/","name":"RailsCarma - Ruby on Rails Development Company specialiserat p\u00e5 Offshore Development","description":"RailsCarma \u00e4r ett Ruby on Rails Development Company i Bangalore. Vi \u00e4r specialiserade p\u00e5 Offshore Ruby on Rails Development baserat i USA och Indien. Anst\u00e4ll erfarna Ruby on Rails-utvecklare f\u00f6r den ultimata webbupplevelsen.","publisher":{"@id":"https:\/\/www.railscarma.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.railscarma.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"sv-SE"},{"@type":"Organization","@id":"https:\/\/www.railscarma.com\/#organization","name":"RailsCarma","url":"https:\/\/www.railscarma.com\/","logo":{"@type":"ImageObject","inLanguage":"sv-SE","@id":"https:\/\/www.railscarma.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.railscarma.com\/wp-content\/uploads\/2020\/08\/railscarma_logo.png","contentUrl":"https:\/\/www.railscarma.com\/wp-content\/uploads\/2020\/08\/railscarma_logo.png","width":200,"height":46,"caption":"RailsCarma"},"image":{"@id":"https:\/\/www.railscarma.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/RailsCarma\/","https:\/\/x.com\/railscarma","https:\/\/www.linkedin.com\/company\/railscarma\/","https:\/\/myspace.com\/railscarma","https:\/\/in.pinterest.com\/railscarma\/","https:\/\/www.youtube.com\/channel\/UCx3Wil-aAnDARuatTEyMdpg"]},{"@type":"Person","@id":"https:\/\/www.railscarma.com\/#\/schema\/person\/5f2228a2dec7549056e709de6eb85d21","name":"administration","image":{"@type":"ImageObject","inLanguage":"sv-SE","@id":"https:\/\/www.railscarma.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/308867ca6c81f3aba146080c601000087180326f752c4116849ea9f514c6a4fa?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/308867ca6c81f3aba146080c601000087180326f752c4116849ea9f514c6a4fa?s=96&d=mm&r=g","caption":"admin"},"sameAs":["https:\/\/www.railscarma.com\/hire-ruby-on-rails-developer\/"]}]}},"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/www.railscarma.com\/sv\/wp-json\/wp\/v2\/posts\/6492","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.railscarma.com\/sv\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.railscarma.com\/sv\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.railscarma.com\/sv\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.railscarma.com\/sv\/wp-json\/wp\/v2\/comments?post=6492"}],"version-history":[{"count":0,"href":"https:\/\/www.railscarma.com\/sv\/wp-json\/wp\/v2\/posts\/6492\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.railscarma.com\/sv\/wp-json\/wp\/v2\/media\/32075"}],"wp:attachment":[{"href":"https:\/\/www.railscarma.com\/sv\/wp-json\/wp\/v2\/media?parent=6492"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.railscarma.com\/sv\/wp-json\/wp\/v2\/categories?post=6492"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.railscarma.com\/sv\/wp-json\/wp\/v2\/tags?post=6492"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}