This page documents the known issues with the SSL Labs code running in production (i.e., www.ssllabs.com).
If your issue is listed as fixed in the latest development version, check it at: https://dev.ssllabs.com
We are using the following IP address ranges:
- SSL Labs - 126.96.36.199/24 (IPv4) & 2600:C02:1020:4202::/64 (IPv6)
- SSL Pulse - 188.8.131.52
- Development SSL Labs server - 184.108.40.206 (IPv4) & 2001:4801:7827:102:93a4:e8aa:5bca:d1f (IPv6)
At present, SSL Labs has the following limitations:
- SSL Labs currently uses Mozilla CA certificate store only. If the root is not there we report it as not trusted. A future SSL Labs version will report trust for each major root store separately.
- Certificate trust is not checked in handshake simulation, we only perform TLS handshake.