node.js 0.10.33 released to fix POODLE vulnerability

Node.JS 0.10.33 recently released, is an open source platform built on Chrome’s JavaScript run-time for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices. npm is a NodeJS package manager that allows you to install node programs. npm now comes pre-packaged with Node.js


According to release note on nodejs website – This release handles the recent POODLE vulnerability by disabling SSLv2/SSLv3 by default for the most predominate uses of TLS in Node.js. With this release, we are confident that the only behavior change is that of the default allowed protocols do not include SSLv2 or SSLv3. Though you are still able to programatically consume those protocols if necessary.

Full details of this release can be found here

Install Node JS 0.10.33

sudo add-apt-repository ppa:chris-lea/node.js

sudo apt-get update

sudo apt-get install nodej
comments powered by Disqus