15.11.2024, 12:19 UhrDeutsch | English
Hallo Gast [ Registrierung | Anmelden ]

Neues Thema eröffnen   Neue Antwort erstellen
Vorheriges Thema anzeigen Druckerfreundliche Version Einloggen, um private Nachrichten zu lesen Nächstes Thema anzeigen
Autor Nachricht
damentz
Titel: SSL Labs Gives kanotix.com An F  BeitragVerfasst am: 28.08.2023, 03:04 Uhr



Anmeldung: 01. Dez 2006
Beiträge: 14

https://www.ssllabs.com/ssltest/analyze ... anotix.com

Below are all the issues.

Zitat:
This server supports SSL 2, which is obsolete and insecure, and can be used against TLS (DROWN attack). Grade set to F.
This server supports insecure cipher suites (see below for details). Grade set to F.
This server supports insecure Diffie-Hellman (DH) key exchange parameters (Logjam). Grade set to F.
This server supports 512-bit export suites and might be vulnerable to the FREAK attack. Grade set to F.
This server is vulnerable to the POODLE attack. If possible, disable SSL 3 to mitigate. Grade capped to C.
This server does not mitigate the CRIME attack. Grade capped to C.
The server supports only older protocols, but not the current best TLS 1.2 or TLS 1.3. Grade capped to C.
This server accepts RC4 cipher, but only with older protocols. Grade capped to B.
There is no support for secure renegotiation.
This server does not support Forward Secrecy with the reference browsers. Grade capped to B.
This server does not support Authenticated encryption (AEAD) cipher suites. Grade capped to B.
This server supports TLS 1.0. Grade capped to B.
 
 Benutzer-Profile anzeigen Private Nachricht senden  
Antworten mit Zitat Nach oben
DeepDayze
Titel: RE: SSL Labs Gives kanotix.com An F  BeitragVerfasst am: 28.08.2023, 03:36 Uhr



Anmeldung: 08. Dez 2005
Beiträge: 300

There seems to have been no updates to the site in a long time.
 
 Benutzer-Profile anzeigen Private Nachricht senden  
Antworten mit Zitat Nach oben
damentz
Titel: RE: SSL Labs Gives kanotix.com An F  BeitragVerfasst am: 28.08.2023, 15:54 Uhr



Anmeldung: 01. Dez 2006
Beiträge: 14

That's an understatement, from SSL Labs, the HTTP signature:
Code:
Apache/2.2.3 (Debian) PHP/5.2.0-8+etch16 mod_ssl/2.2.3 OpenSSL/0.9.8c


Debian Etch had its last update in 2010. This is negligent, I'd assume this server has been compromised for years and is part of a botnet.
 
 Benutzer-Profile anzeigen Private Nachricht senden  
Antworten mit Zitat Nach oben
Beiträge vom vorherigen Thema anzeigen:     
Gehe zu:  
Alle Zeiten sind GMT + 1 Stunde
Neues Thema eröffnen   Neue Antwort erstellen
Vorheriges Thema anzeigen Druckerfreundliche Version Einloggen, um private Nachrichten zu lesen Nächstes Thema anzeigen
PNphpBB2 © 2003-2007 
 
Deutsch | English
Logos and trademarks are the property of their respective owners, comments are property of their posters, the rest is © 2004 - 2006 by Jörg Schirottke (Kano).
Consult Impressum and Legal Terms for details. Kanotix is Free Software released under the GNU/GPL license.
This CMS is powered by PostNuke, all themes used at this site are released under the GNU/GPL license. designed and hosted by w3you. Our web server is running on Kanotix64-2006.