LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 03-17-2015, 03:25 AM   #1
cov
Member
 
Registered: Apr 2005
Location: Durban
Posts: 436

Rep: Reputation: 30
SSLv3 and Openpanel


I've used Openpanel on a VPS web server.

I did recognise that it was somewhat out of date, but it had a nice interface and it actually worked.

That decision is coming back to haunt me as I am now unable to log in to it's front end due to it's use of SSLv3.

Can anyone suggest a fix?
 
Old 03-21-2015, 06:56 AM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600
Quote:
Originally Posted by cov View Post
Can anyone suggest a fix?
Please move to an Open Source Software Control Panel that's well-maintained and supported and use TLS instead of SSL.
 
Old 03-21-2015, 08:11 AM   #3
cov
Member
 
Registered: Apr 2005
Location: Durban
Posts: 436

Original Poster
Rep: Reputation: 30
Well, yes, easier said than done, though.

Most open source control panels aren't able to be installed retroactively.
 
Old 03-21-2015, 01:51 PM   #4
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600
Quote:
Originally Posted by cov View Post
Most open source control panels aren't able to be installed retroactively.
True and that may be due to the type of audience they try to cater to. Which is to say: most people using Linux shouldn't be using a Control Panel in the first place... Now, I do realize there is some work involved but given the current state of things let's phrase it this way: IMHO the only reasons you can afford to forego on having proper security is if the machine you're hosting on, the customers whose business and data you try to safeguard and the time and effort you already put in all are of no consequence. Does that make sense?
 
Old 03-25-2015, 12:02 PM   #5
felicianmv
LQ Newbie
 
Registered: Mar 2015
Posts: 1

Rep: Reputation: Disabled
I'm in the same situation and it seems there is no fix, because openpanel uses matrixssl 1.8.8 library for ssl daemon, a version which only supports ssl v3 protocol on server side.
Good news is that only Firefox has this problem, using another browser you can get in.
 
Old 03-26-2015, 02:02 AM   #6
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600
Well you could make it not use the MatrixSSL library and put something in front of it that does provide TLS like a web server, reverse proxy or stunnel, right?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Disabling SSLv3 in Java Iyyappan Linux - Server 2 03-06-2015 04:31 AM
SSLv3 Vulnerability (CVE-2014-3566, POODLE) Linux_Kidd Linux - News 5 12-10-2014 12:54 PM
Disable SSLv3 on Redhat Linux Reverse Proxy box kumartnj Linux - Security 1 11-25-2014 09:36 AM
webservers SSLv3 disabled but under reverse proxy depam Linux - Security 2 10-19-2014 05:11 AM
Courier-imaps using TLS or SSLv3 ? scoop_yo Linux - Security 1 01-29-2009 02:44 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 03:08 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration