Hi all,
Due to this advisory: https://zmap.io/sslv3/browsers.html#chrome-windows
I have followed the mechanism described here:
https://code.google.com/p/chromiumembed ... _Arguments
to implement OnBeforeCommandLineProcessing() in my CEF app and append the command-line switch to set the "ssl-version-min" to "tls1"
Seems the setting is not carried through though? I visit the test page https://www.poodletest.com and "vulnerable" printed before and after the change.
I see the same behavior if I use the bare-bones cef_client project as well.
I am using CEF 1650.
Any ideas or suggestions why this might not be working?
Is this expected behavior due to this Chrome switch not being implemented?
Thank you,
- Ivo