-
Notifications
You must be signed in to change notification settings - Fork 57
Upgrade apache or libssl #257
Comments
Also, you use the |
According to the above SSL Labs link, the server now supports TLS up to 1.2 (in fact the rating is pretty good overall). I think this issue can be closed. |
Well this issue wasn't closed. Right now we score a B. Is that good enough? The main problems are some insecure cypher suites, supporting RC4 and only partial support for forward secrecy. |
Well back in 2014 I dind’t have the permissions to close this issue :) We could remove RC4, which is the only grossly insecure suite in our list. I’m not sure why it complains about FS – we seem to support it for all up-to-date systems tested by SSLLabs (exceptions are old versions of Windows, Windows Phone, Android, or Java). I noticed something else in the report:
Is that really the correct hostname? I suspect it’s just a copy+pasted and not updated bit of Apache config :) |
It appears https://www.ssllabs.com/ssltest/analyze.html?d=modules.ceylon-lang.org&ignoreMismatch=on says our SSL implementation is not up to date, especially TLS 1.0 instead of the newer 1.2, perhaps we need to upgrade apache or libssl?
The text was updated successfully, but these errors were encountered: