View Revisions: Issue #1262

Summary 0001262: SslLabs B rating (if trust issues are ignored) for cacert.org SSL/TLS setup
Revision 2014-04-14 18:23 by MartinGummi
Description This issue has been partially address by https://bugs.cacert.org/view.php?id=1241 , but there is still more work to do. Here's a link to the report https://www.ssllabs.com/ssltest/analyze.html?d=cacert.org

Outside of the chain of trust, these issues remain

* No TLS 1.2 support
* No Strict Transport Security (HSTS) support
* server does not support Forward Secrecy with the reference browsers
* BEAST attack not mitigated server-side
Revision 2014-03-28 19:34 by sysfu
Description This issue has been partially address by https://bugs.cacert.org/view.php?id=1241, but there is still more work to do. Here's a link to the report https://www.ssllabs.com/ssltest/analyze.html?d=cacert.org

Outside of the chain of trust, these issues remain

* No TLS 1.2 support
* No Strict Transport Security (HSTS) support
* server does not support Forward Secrecy with the reference browsers
* BEAST attack not mitigated server-side