sescobb27/gist:194e58c78a4568d21286

## gistfile1.go
// You don't want to serve HTTPS supporting for SSL3.0 any longer, see:
// http://googleonlinesecurity.blogspot.de/2014/10/this-poodle-bites-exploiting-ssl-30.html
import (
	"crypto/tls"
	"net/http"
)

// This code supports SSL3.0, TLS1.0, TLS1.1 and TLS1.2
// Chances are you currently do this but want to stop due to the POODLE
err := http.ListenAndServeTLS(addr, "crtfile", "keyfile", handler)

// This code instead supports TLS1.0, TLS1.1 and TLS1.2
// But note that it may cause you compatibility problems
// (In particular, TLS_FALLBACK_SCSV is not handled)
config := &tls.Config{MinVersion: tls.VersionTLS10}
server := &http.Server{Addr: addr, Handler: handler, TLSConfig: config}
err := server.ListenAndServeTLS("crtfile", "keyfile")
	// You don't want to serve HTTPS supporting for SSL3.0 any longer, see:
	// http://googleonlinesecurity.blogspot.de/2014/10/this-poodle-bites-exploiting-ssl-30.html
	import (
	"crypto/tls"
	"net/http"
	)

	// This code supports SSL3.0, TLS1.0, TLS1.1 and TLS1.2
	// Chances are you currently do this but want to stop due to the POODLE
	err := http.ListenAndServeTLS(addr, "crtfile", "keyfile", handler)

	// This code instead supports TLS1.0, TLS1.1 and TLS1.2
	// But note that it may cause you compatibility problems
	// (In particular, TLS_FALLBACK_SCSV is not handled)
	config := &tls.Config{MinVersion: tls.VersionTLS10}
	server := &http.Server{Addr: addr, Handler: handler, TLSConfig: config}
	err := server.ListenAndServeTLS("crtfile", "keyfile")