249360 – NetBeans website vulnerable to POODLE attack

This Bugzilla instance is a read-only archive of historic NetBeans bug reports. To report a bug in NetBeans please follow the project's instructions for reporting issues.

Bug 249360 - NetBeans website vulnerable to POODLE attack

Summary: NetBeans website vulnerable to POODLE attack

Status:	RESOLVED INVALID

Alias:	None

Product:	www
Classification:	Unclassified
Component:	Web Content (show other bugs)
Version:	8.0.2
Hardware:	All All

Importance:	P4 normal (vote)
Assignee:	Jan Pirek

URL:
Keywords:

Depends on:
Blocks:

Reported:	2014-12-15 15:11 UTC by Coding_Panda
Modified:	2014-12-18 21:00 UTC (History)
CC List:	0 users

See Also:
Issue Type:	DEFECT
Exception Reporter:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Coding_Panda 2014-12-15 15:11:13 UTC

According to "https://www.ssllabs.com/ssltest/", the NetBeans site is vulnerable to the POODLE attack: 

www.netbeans.org report: https://www.ssllabs.com/ssltest/analyze.html?d=netbeans.org&s=137.254.56.49

netbeans.org report: https://www.ssllabs.com/ssltest/analyze.html?d=netbeans.org&s=137.254.56.26

Comment 1 Coding_Panda 2014-12-18 21:00:39 UTC

I hadn't actually looked at the reports as I had just seen them in the most recent reports view, but it seems that the reports are cached from ages ago and are actually completely wrong and that the view is just misleading.