[BlueOnyx:21866] Re: Install Intermediate Certificate from Godaddy : Drown Attack

[Michael Stauber]

Hi Rodrigo,

> We placed godaddy intermediate certificate on the site at> /home/sites/www.sitename.com/certs> And renamed the file "ca-chain"> >
We also tried to import it using the manage certificate authorities >
And it reads that the imported file has more than 1 certificate
When you import intermediates via the GUI, then you need to upload the
intermediates one by one. So open it up in a text-editor and split it ,
so that each textfile you want to upload contains just one intermediate.
 > When trying to validate the installed Certificate, The server is
reported as> vulnerable to drown attack,
Even with missing intermediates your server should not be vulnerable to
the "Drown"-attack, as SSLv2 and SSLv3 are disabled since long. Which
analytic tool reported the "Drown"-vulnerability as present?

-- 
With best regards

Michael Stauber