I think they are caching results not testing live because the mail server hasn’t supported SSLv2 (or v3) since the last update, does anyone know of a live test facility so I can double check?
Thanks, Chris
On 1 Mar 2016, at 18:51, Tom Hayward esarfl@gmail.com wrote:
(Please trim inclusions from previous messages) _______________________________________________ On Tue, Mar 1, 2016 at 10:27 AM, G1FEF chris@g1fef.co.uk wrote:
We are using Apache 2.4 which disables SSLv2 by default, I had also disabled v3 for good measure, but when I saw the news I double checked anyway, so we should be good.
Thanks for the heads up though.
Regards, Chris
SSLv2 is enabled in the mail server, and since you used the same certificate for mail and https, https is left vulnerable.
Tom KD7LXL _________________________________________ 44Net mailing list 44Net@hamradio.ucsd.edu http://hamradio.ucsd.edu/mailman/listinfo/44net