AnsweredAssumed Answered

Problems with renegotiation testing on SSL Labs reports

Question asked by Andrew Aitchison on Sep 11, 2019
Latest reply on Sep 17, 2019 by Keith Shaw

SSL Labs server reports such as https ://www.ssllabs.com/ssltest/analyze.html?d=buy.itunes.apple.com
(sorry, link brken to make the URL readable) have *two* links to more info about secure renegotiation at https://community.qualys.com/blogs/securitylabs/2010/10/06/disabling-ssl-renegotiation-is-a-crutch-not-a-fix which no longer exists. Did you mean https ://blog.ivanristic.com/2010/10/disabling-ssl-renegotiation-is-a-crutch-not-a-fix.html ?

 

I note that, for very good reasons, https ://browsercheck.qualys.com/ cannot be viewed by firefox when security.ssl.require_safe_negotiation is set to true. If this becomes the default then firefox users would be unable to use browsercheck.qualys.com

 

Thanks,

Andrew C Aitchison

Outcomes