https://bugzilla.wikimedia.org/show_bug.cgi?id=53259
--- Comment #19 from [email protected] --- I just find more and more sites with no FS: * gerrit.wikimedia.org * wikitech.wikimedia.org * ticket.wikimedia.org * lists.wikimedia.org * dumps.wikimedia.org * graphite.wikimedia.org * gdash.wikimedia.org Again, graphite.wikimedia.org, gdash.wikimedia.org and dumps.wikimedia.org are "vulnerable to the OpenSSL CCS vulnerability (CVE-2014-0224) and exploitable". lists.wikimedia.org is "vulnerable to the OpenSSL CCS vulnerability (CVE-2014-0224), but probably not exploitable", and lists.wikimedia.org does not support TLS 1.1 and TLS 1.2. [1] https://www.ssllabs.com/ssltest/analyze.html?d=graphite.wikimedia.org (F) [2] https://www.ssllabs.com/ssltest/analyze.html?d=gdash.wikimedia.org (F) [3] https://www.ssllabs.com/ssltest/analyze.html?d=dumps.wikimedia.org (F) [4] https://www.ssllabs.com/ssltest/analyze.html?d=lists.wikimedia.org (B) -- You are receiving this mail because: You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
