By You may have seen the recent news stories about the DROWN vulnerability. This is just a quick note to let you know that as far as we can tell there is no system currently vulnerable at Kent. This is thanks to the work done by the Server Infrastructure Team, Operations Team, and other server administrators across campus over the past few months.
This website does list one server as vulnerable, but it has now been patched and we are waiting for the results shown on this site to be updated.
Technical explanation: The version of Exim which we are using comes from the Redhat EPEL repository. The version of Exim which was provided there did not have the ability to disable SSLv2 until a couple of days ago. This update has now been applied.