AnsweredAssumed Answered

Why our server is still being vulnerable to DROWN attacks?

Question asked by Jorge Salazar on May 13, 2016
Latest reply on Jul 19, 2016 by Ivan Ristić



I have followed all the instruction and investigated about the DROWN attack and I have deactivated SSLv2 and SSLv3 for all services in my server. Also, I recently updated the server and restarted it. But it is still being ranked with F from ssllabs as if the server is still vulnerable to this attack, but the graphics shows scores over the 90% so the server is secure, but for some reason I don't understand sslabs is still ranking my server with an F.


Any advise would be much appreciated.