Η Google announced that it is dropping support for SSLv3 and RC4 encryption after June 16, 2016. This affects all Google SMTP servers as well as Gmail web servers.
Users using the services αυτές, όπως οι webmasters που τρέχουν εφαρμογές από την πλατφόρμα του Goοgle Apps και εκείνων που χρησιμοποιούν το Gmail, θα πρέπει να προσαρμόσουν τις υπηρεσίες τους, για να αποφευχθούν τεχνικά προβλήματα και downtimes.
In addition, users using older customers e-mail and Web services that send messages over SSLv3 and RC4 will no longer be able to exchange e-mail messages with Google's infrastructure.
“Η SSLv3 έπαψε να ισχύει για πάνω από 16 χρόνια και είναι τόσο γεμάτη από γνωστά προβλήματα που η Task Force Internet Engineering (IETF) έχει αποφασίσει ότι δεν πρέπει να χρησιμοποιείται πλέον,” εξήγησαν οι οι τεχνικοί της Google.
“RC4 is a 28-year-old crypto that was impressively good, but is now the subject of multiple attacks at conferences better safetys. The IETF has decided that RC4 should not and will no longer be used.”
While everyone was already aware that RC4 was a weak encryption, SSLv3 was still acceptable until 2014 when the POODLE attack proved to the contrary. Some TLS applications are also vulnerable.
Google initially announced that he would abandon SSLv3 and RC4 last autumn, but did not give any time.
