'The DROWN' Attack vulnerability - WeOnlyDo Discussion board

'The DROWN' Attack vulnerability (wodSSH / wodSSH.NET)

by Jasmine, Friday, March 11, 2016, 13:06 (2940 days ago) @ g_phanikiran

Hi.

Since DROWN is related to SSL/TLS, wodSSH.NET is not vulnerable (different protocol).

As for wodFtpDLX.NET, it depends on the server if it has enabled SSLv2 or not. You can enforce use of TLS through SecureMethod property

SslProtocols

so from client's perspective you don't even give ability for SSLv2 to be used.

I hope this helps!
Jasmine


Complete thread: