[ https://issues.apache.org/jira/browse/STORM-640?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14328560#comment-14328560 ]
ASF GitHub Bot commented on STORM-640: -------------------------------------- Github user asfgit closed the pull request at: https://github.com/apache/storm/pull/412 > Storm UI vulnerable to poodle attack > ------------------------------------ > > Key: STORM-640 > URL: https://issues.apache.org/jira/browse/STORM-640 > Project: Apache Storm > Issue Type: Bug > Reporter: Sriharsha Chintalapani > Assignee: Sriharsha Chintalapani > Priority: Trivial > > More info on this page http://en.wikipedia.org/wiki/POODLE . > Steps to verify > 1 Enable storm ui or logviewer to listen in SSL > 2. openssl s_client -connect host:port | grep Protocol > 3. If SSLv3 shows up you have the vulnerability, TLS protocol versions are OK. -- This message was sent by Atlassian JIRA (v6.3.4#6332)