Residentcl Posted December 21, 2015 Posted December 21, 2015 (edited) Hi. Here I give notice of a security problem with the site members. This server supports weak Diffie-Hellman (DH) key exchange parameters. Grade capped to B. Intermediate certificate has a weak signature. Upgrade to SHA2 as soon as possible to avoid browser warnings. The server supports only older protocols, but not the current best TLS 1.2. Grade capped to C. The server does not support Forward Secrecy with the reference browsers. more info: https://www.ssllabs.com/ssltest/analyze.html?d=DVBViewer.tv Edited December 21, 2015 by Residentcl Quote
esackbauer Posted December 21, 2015 Posted December 21, 2015 I second this. If you offer https, then properly, otherwise you can stay with http... Quote
Tjod Posted December 22, 2015 Posted December 22, 2015 There are two certificate chains. And Path #1 has no problem.https://shaaaaaaaaaaaaa.com/check/DVBViewer.tvPath #2 with the SHA1 intermittent should be ignored in most software. And one trusted path is enough.The GeoTrust DV SSL CA - G4 intermittent certificate is singed. By an old and a new GeoTrust Global CA certificate.Only old outdated clients which don't know "GeoTrust Global CA" but the old Equifax certificate will use path #2.The whole thing is configured by the web hosting provider. Mostly this will only change if there is a real problem or the hosting provider changes its settings. 1 Quote
Residentcl Posted December 23, 2015 Author Posted December 23, 2015 Ok, I had no idea about that Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.