On 2017/01/25 21:07, sivmu wrote: > Anyways ssllabs shows a warning that the website will be degraded > from A to C in a month. Not sure that matters all that much, but if > there is an oppertunity to change the available ciphers at some > point...
I've looked into this and I'm not sure why ssllabs is degrading from A- to C. There is a link to the blog post in the results page, but the post appears to say that the grade will *not* be reduced. I quote: > we’ll be modifying our grading criteria to penalise sites that > negotiate 3DES with TLS 1.1 and newer protocols. Such sites will > have their scores capped at C. Sites that continue to support 3DES > and keep it at the end of their ordered list of suites will not be > affected (for now). gnupg.org *does* keep 3DES at the end of the supported suites, so surely it should not be affected. I'm tempted to write this off as a mistake by ssllabs. A
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users