Closed sindarina closed 8 years ago
Notified via contact form; https://www.host.al/contact Poked on Twitter; https://twitter.com/isvsecwatch/status/600276083011891200
In light of the details of the Logjam attack (https://weakdh.org/), we are upgrading 1024-bit DH keys to a red level issue that should be resolved, as that key size puts it within reach of state-level adversaries and is no longer considered safe.
See https://github.com/isvsecwatch/httpstracker#a-note-on-dhdhe for details.
No change.
No change.
No change.
It looks like they fixed the DH key size, but ignored the problems with client-side cipher ordering, and the lack of robust Forward Secrecy; https://www.ssllabs.com/ssltest/analyze.html?d=host.al
No change.
Unlikely to have changed, closing as unresolved.
SSL Server Test Results https://www.ssllabs.com/ssltest/analyze.html?d=host.al (B)
Cipherscan Results
Cipherscan Analysis
See our recommendations for optimising your configuration: https://github.com/isvsecwatch/httpstracker