[BlueOnyx:21867] Re: Install Intermediate Certificate from Godaddy : Drown Attack
Rodrigo Ordoñez Licona
rordonez at xnet.com.mx
Tue Mar 20 14:38:27 -05 2018
Thanks for the response.
https://www.ssllabs.com Reported vulnerable to Drown
This is a 5208 That was converted from 5108 via the update script,
However its yummed up to date.
Recently had yum stuck and had to remove and reinstall avspam a few times.
maybe old code went onboard
Regards
Rodrigo O
-----Original Message-----
From: Blueonyx [mailto:blueonyx-bounces at mail.blueonyx.it] On Behalf Of
Michael Stauber
Sent: martes, 20 de marzo de 2018 10:05 a. m.
To: blueonyx at mail.blueonyx.it
Subject: [BlueOnyx:21866] Re: Install Intermediate Certificate from Godaddy
: Drown Attack
Hi Rodrigo,
> We placed godaddy intermediate certificate on the site at>
> /home/sites/www.sitename.com/certs> And renamed the file "ca-chain"> >
We also tried to import it using the manage certificate authorities > And it
reads that the imported file has more than 1 certificate When you import
intermediates via the GUI, then you need to upload the intermediates one by
one. So open it up in a text-editor and split it , so that each textfile you
want to upload contains just one intermediate.
> When trying to validate the installed Certificate, The server is reported
as> vulnerable to drown attack, Even with missing intermediates your server
should not be vulnerable to the "Drown"-attack, as SSLv2 and SSLv3 are
disabled since long. Which analytic tool reported the "Drown"-vulnerability
as present?
--
With best regards
Michael Stauber
_______________________________________________
Blueonyx mailing list
Blueonyx at mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx
More information about the Blueonyx
mailing list