Thanks for the response. https://www.ssllabs.com Reported vulnerable to Drown
This is a 5208 That was converted from 5108 via the update script, However its yummed up to date. Recently had yum stuck and had to remove and reinstall avspam a few times. maybe old code went onboard Regards Rodrigo O -----Original Message----- From: Blueonyx [mailto:blueonyx-boun...@mail.blueonyx.it] On Behalf Of Michael Stauber Sent: martes, 20 de marzo de 2018 10:05 a. m. To: blueonyx@mail.blueonyx.it Subject: [BlueOnyx:21866] Re: Install Intermediate Certificate from Godaddy : Drown Attack Hi Rodrigo, > We placed godaddy intermediate certificate on the site at> > /home/sites/www.sitename.com/certs> And renamed the file "ca-chain"> > We also tried to import it using the manage certificate authorities > And it reads that the imported file has more than 1 certificate When you import intermediates via the GUI, then you need to upload the intermediates one by one. So open it up in a text-editor and split it , so that each textfile you want to upload contains just one intermediate. > When trying to validate the installed Certificate, The server is reported as> vulnerable to drown attack, Even with missing intermediates your server should not be vulnerable to the "Drown"-attack, as SSLv2 and SSLv3 are disabled since long. Which analytic tool reported the "Drown"-vulnerability as present? -- With best regards Michael Stauber _______________________________________________ Blueonyx mailing list Blueonyx@mail.blueonyx.it http://mail.blueonyx.it/mailman/listinfo/blueonyx _______________________________________________ Blueonyx mailing list Blueonyx@mail.blueonyx.it http://mail.blueonyx.it/mailman/listinfo/blueonyx