Added by Peter Norin over 9 years ago
We are looking into this and will provide a fix.
If you use a modern browser it should not be a problem since it should use the TLS suites. His however relies on that you verify that you actually use TLS and not SSLv3.
Support SSLv3 as fallback will be removed so that you wont be susceptible to a mitm that perform a downgrade attack.
If you have questions dont hesitate to contact us
Forgot to mention that this is only affects versions prior to 2.0.2