search

ssllabs / ssllabs-scan

A command-line reference-implementation client for SSL Labs APIs, designed for automated and/or bulk testing.
https://www.ssllabs.com/projects/ssllabs-apis/
Apache License 2.0
1.69k stars 240 forks source link

Link for secure renegotiation is broken #738

Closed Fred010101 closed 5 years ago

Fred010101 commented 5 years ago

I scanned a web server that doesn't support secure renegotiation. The Qualys page displays this message:

There is no support for secure renegotiation. Grade reduced to A-. MORE INFO »

More Info is a hyperlink to this page: https://community.qualys.com/blogs/securitylabs/2010/10/06/disabling-ssl-renegotiation-is-a-crutch-not-a-fix?

However that page doesn't exist (the link is broken)

tamthing commented 5 years ago

Thank you for reporting, we would look into it.

FranklinYu commented 5 years ago

Yes I noticed that; correct URL is

https://blog.qualys.com/ssllabs/2010/10/06/disabling-ssl-renegotiation-is-a-crutch-not-a-fix-2

I think we should have a redirect. #736 is similar.

naumanshah03 commented 5 years ago

To give an update we are in the process of fixing it - https://discussions.qualys.com/thread/20109-problems-with-renegotiation-testing-on-ssl-labs-reports#comment-48649

For now please use the link mentioned by @FranklinYu

Duplicate of #745