have a webserver that get A- due to secure negotiation.
i recorded a pcap and saw that the server replay with ff 01 00 01 00 in the server hello, however we dont have the renegotiation itself activated.
i'd like to better understand what this test searches in the response from the server and how it determines if the secure negotiation is on or off.
If the pcap is needed just let me know and i can upload it or send a screen shot.
From reading other discussions around it i believe that my server supports RFC 5746 - Transport Layer Security (TLS) Renegotiation Indication Extension as it sends ff 01 00 01 00