andrewg at andrewg.com
Thu Jan 26 01:16:42 CET 2017
On 2017/01/25 21:07, sivmu wrote:
> Anyways ssllabs shows a warning that the website will be degraded
> from A to C in a month. Not sure that matters all that much, but if
> there is an oppertunity to change the available ciphers at some
I've looked into this and I'm not sure why ssllabs is degrading from A-
to C. There is a link to the blog post in the results page, but the post
appears to say that the grade will *not* be reduced. I quote:
> we’ll be modifying our grading criteria to penalise sites that
> negotiate 3DES with TLS 1.1 and newer protocols. Such sites will
> have their scores capped at C. Sites that continue to support 3DES
> and keep it at the end of their ordered list of suites will not be
> affected (for now).
gnupg.org *does* keep 3DES at the end of the supported suites, so surely
it should not be affected. I'm tempted to write this off as a
mistake by ssllabs.
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 801 bytes
Desc: OpenPGP digital signature
More information about the Gnupg-users