Got a response on my TAC case. Confirmed that they are receiving a lot of tickets on this one and it is "definitely" a false positive and can be disabled safely. Developers are looking into a fix \ new signature release at this point. Hope that helps...
I as well have received 1000+ alerts from this one. The majority of the "attacker" IP addresses point back to google as well. If you look at what is actually triggering the alert (in my case at least) it shows every user trying to download "GoogleUpd...
Check out this page: http://hackingcisco.blogspot.com/2011/04/lab-100-bgp-hidden-feature-bestpath-as.html It could just be that your ISP is ignoring the AS path (with your prepended AS numbers). Essentially they are receiving it and installing the ro...
9.1.6 fixed both the SSL and TLS POODLE for me... I set the ssl server-version to TLSv1-only. Then if you do a scan at a site like https://www.ssllabs.com/ssltest/ you should come back with a passing score.
