Qualys SSL Labs adds 4 new tests for vulnerabilities, and considers cipher suites using CBC "weak":

– as an admin, you should disable all CBC cipher suites for several reasons (use GCM for block ciphers)
– SSL Labs tests for POODLE, GOLDENDOODLE, 0-Length OpenSSL, and Sleeping POODLE now
– servers affected by the vulnerabilities are downgraded to F

Sign in to participate in the conversation
Mastodon is a microblogging site that federates with most instances on the Fediverse.