These forums have been archived and are now read-only.

The new forums are live and can be found at https://forums.eveonline.com/

Linux

 
  • Topic is locked indefinitely.
 

@CCP, Are you really using SSLv2?

Author
Ravow
Respawn Disabled
Brute Force Solutions
#1 - 2017-03-15 12:51:35 UTC  |  Edited by: Ravow
From information found in this post : https://forums.eveonline.com/default.aspx?g=posts&t=507730&find=unread

sslv2....
SSLv2 WTF?????

CCP.. Are you serious, your the one who did block launching EVE via exefile for "security" reason in exchange for a broken and insecure stack invented in 1995 with hole everywhere, you can easily reset the connection forcing a lower cipher like RC4 then just get the login...

https://tools.ietf.org/html/rfc6176

Really hope it was Manarky's Wine poping nonsense messages than really EVE trying to use SSLv2.

@everyone
If you share passwords with other thing than EVE, change them asap (the other one, not the EVE one), EVE password are compromised by default.
Ravow
Respawn Disabled
Brute Force Solutions
#2 - 2017-03-15 13:52:42 UTC  |  Edited by: Ravow
Reply to myself, yes it does, kind of!

[Self censor... will make a petition]

I did an audit and I strongly recommend to not log on EVE via WIFI (especially public wifi and ISP provided modem-router wifi). And do use the Second Authentication.