[BlueOnyx:21868] Re: Install Intermediate Certificate from Godaddy : Drown Attack
Michael Stauber
mstauber at blueonyx.it
Tue Mar 20 15:29:17 -05 2018
Hi Rodrigo,
> https://www.ssllabs.com Reported vulnerable to Drown
>
> This is a 5208 That was converted from 5108 via the update script,
> However its yummed up to date.
Hmmm ... please disable SSL for that Vsite, save and then enable SSL
again. Next see if SSL-Labs still reports the vulnerability to Drown.
It could be that during the transition from 5108R to 5208R the script ...
/usr/sausalito/sbin/SSL_fixer.pl
... had not been run, which forces a write out of the updated SSL
settings to the individual Vsite Apache configs.
--
With best regards
Michael Stauber
More information about the Blueonyx
mailing list