[Bug 29014] New: Disable SSLv2 on secure.wikimedia.org

bugzilla-daemon Mon, 16 May 2011 09:12:13 -0700

https://bugzilla.wikimedia.org/show_bug.cgi?id=29014


       Web browser: ---
             Bug #: 29014
           Summary: Disable SSLv2 on secure.wikimedia.org
           Product: Wikimedia
           Version: unspecified
          Platform: All
               URL: https://www.ssllabs.com/ssldb/analyze.html?d=secure.wi
                    kimedia.org
        OS/Version: All
            Status: NEW
          Severity: enhancement
          Priority: Unprioritized
         Component: SSL related
        AssignedTo: [email protected]
        ReportedBy: [email protected]
                CC: [email protected], [email protected],
                    [email protected]
            Blocks: 27946
    Classification: Unclassified


+++ This bug was initially created as a clone of Bug #27909 +++

SSLv2 has some security problems, so current best practice is to not support
it:

http://tools.ietf.org/html/rfc6176

It might be desirable to disable the ciphers listed as weak on the SSL Labs
page, unless there are concerns that would exclude users with very old clients.

-- 
Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
You are on the CC list for the bug.

_______________________________________________
Wikibugs-l mailing list
[email protected]
https://lists.wikimedia.org/mailman/listinfo/wikibugs-l

[Bug 29014] New: Disable SSLv2 on secure.wikimedia.org

Reply via email to