Hi, please see https://www.ssllabs.com/ssltest/analyze.html?d=online.fibi.co.il&hideResults=on.
It gets an A+ grade, while the topmost cipher is marked as "weak", how so?
Currently, we give 'B' grade for not supporting AEAD suites.
We are aware of this grading mechanism in the exiting grading calculation. We are working on new grading calculation and we will be taking care of the above-stated scenario into consideration for the new grading calculation.
Thanks, I hope it will be ASAP because it looks like a ranking bug since the order of the ciphers is very basic for the strength of the actual encrypted session.
Also, you will need to update the rating guide, SSL Server Rating Guide · ssllabs/research Wiki · GitHub , since today it is not mentioning that the ciphers order is important and taken into account when grading the score.
Retrieving data ...