-
I made a check of the https configuration of the w3id.org server using the Qualys SSL Labs server test -> https://www.ssllabs.com/ssltest/analyze.html?d=w3id.org
I'm seeing grade B, which I think i…
-
I find it odd that the demo created via CloudFormation does not do HTTPS for the API.
I know you recommend a VPN for production, but it seems like having HTTPS in both places wouldn't hurt.
How …
-
Is there an option to obtain an EC certificate from LE with autoacme? All ciphers used by IIS with RSA certs (at least under Windows 2012 r2) are considered weak by Qualys SSL Labs. IIS does not use E…
-
The badgr-dev2.edubadges.nl webserver supports insecure Medium and RC4 ciphers.
-
[SSLeuth](https://addons.mozilla.org/firefox/addon/ssleuth/) offered a simple grading of the TLS connections quality, based upon factors like "strength of the symmetric encryption", "strength of the k…
-
Because the data in webtrees are sensitiv, I've been experimenting with CSP-rules and other security-headers on my genealogy-website. See #3505
On the same server I've also installed my private cl…
ghost updated
3 years ago
-
Immuniweb.com test results for Mozilla Observatory see full results in link
https://www.immuniweb.com/ssl/observatory.mozilla.org/IepbUqru/
The key size (DH parameter) in the Diffie-Hellman key …
-
Disabling TLS 1.2 doesn't make a server supporting only TLS 1.2 and TLS 1.3 less secure.
-
Some examples:
mozilla.org returns an A (87/100), SSL Labs gives it a C
pokeinthe.io returns an A (94/100), SSL Labs gives it an A+
sha1.badssl.com returns an A (88/100), SSL Labs gives it a B
unknow…
april updated
7 years ago
-
This is a continuation of #859, but since the issue is closed I raise a new one. I think it would be nice if the TLS setup came as secure according to the current best practice by default when using …