Closed sindarina closed 7 years ago
Linking this to #33 and #34, as vendor has already been notified for that.
Possibly related to #36.
No change.
Due to today's SSL Server Test changes, this now caps at 'C'; https://www.ssllabs.com/ssltest/analyze.html?d=api.intuit.com
No change.
No change.
No change.
A new RC4 attack, NOMORE, was released today; http://www.rc4nomore.com/
Please update your systems.
Same change, and same problems as #36.
No change.
Still unchanged.
Unlikely to have changed, see #33.
They dropped RC4, at last;
Target: api.intuit.com:443
prio ciphersuite protocols pfs curves
1 AES256-SHA256 TLSv1.2 None None
2 AES256-SHA TLSv1,TLSv1.1,TLSv1.2 None None
3 AES128-SHA256 TLSv1.2 None None
4 AES128-SHA TLSv1,TLSv1.1,TLSv1.2 None None
5 DES-CBC3-SHA TLSv1,TLSv1.1,TLSv1.2 None None
6 ECDHE-RSA-AES256-SHA384 TLSv1.2 ECDH,P-256,256bits prime256v1
7 ECDHE-RSA-AES256-SHA TLSv1,TLSv1.1,TLSv1.2 ECDH,P-256,256bits prime256v1
8 ECDHE-RSA-AES128-SHA256 TLSv1.2 ECDH,P-256,256bits prime256v1
9 ECDHE-RSA-AES128-SHA TLSv1,TLSv1.1,TLSv1.2 ECDH,P-256,256bits prime256v1
10 ECDHE-RSA-DES-CBC3-SHA TLSv1,TLSv1.1,TLSv1.2 ECDH,P-256,256bits prime256v1
Certificate: trusted, 2048 bits, sha256WithRSAEncryption signature
TLS ticket lifetime hint: None
OCSP stapling: not supported
Cipher ordering: server
Curves ordering: server - fallback: no
Server supports secure renegotiation
Server supported compression methods: NONE
TLS Tolerance: yes
Apparently no other changes.
Removed the SHA1 certificate, but still not fixed in terms of cipher ordering.
No change.
No change.
SSL Server Test Results https://www.ssllabs.com/ssltest/analyze.html?d=api.intuit.com (B)
Cipherscan Results
Cipherscan Analysis