Today’s links

  • Yet another SSL bleed. This time it’s POODLE and it’s related to exploiting the fallback to older versions of SSL/TLS, supported in many clients, and then exploiting the actual issue on SSL 3.0, which is related to padding oracles.There’s also  a nice read on how this happened.
  • Improving indexing performance on elastic search, from the elastic search blog.