Hi, On 05.12.2016 16:21, Pierre-d O. wrote: > Maybe the TLS_Fallback_SCSV kb item should be set elsewhere in the NVT and > not affect the result of this NVT ?
thanks for the hint. The NVT was updated to reflect the following: - Only SSLv3 (with CBC ciphers accepted) and no TLSv1.0+ enabled -> vulnerable - SSLv3 (with CBC ciphers accepted) and TSLv1.0+ enabled and no TLS_Fallback_SCSV support -> vulnerable - SSLv3 (with CBC ciphers accepted) and TSLv1.0+ enabled and TLS_Fallback_SCSV support -> not vulnerable The update should hit the feed with the next feed update. Regards, -- Christian Fischer | PGP Key: 0x54F3CE5B76C597AD Greenbone Networks GmbH | http://greenbone.net Neuer Graben 17, 49074 Osnabrück, Germany | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner _______________________________________________ Openvas-plugins mailing list Openvas-plugins@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-plugins
