Reaching A+ in web GUI ssltest
Posted: Fri Aug 14, 2015 4:44 pm
Hi, it would be nice if the web frontend of openvpn-as could be able to reach A+ grade out of the box with ssllabs ssltest:
https://www.ssllabs.com/ssltest/
- ssl2 support should be removed, also from the GUI;
- ssl3 should also be safely removed, only browser requiring it is ie6 on winxp; most web server are disabling it: https://www.trustworthyinternet.org/ssl-pulse/
- also i get this: The server does not support Forward Secrecy with the reference browsers. Grade reduced to A-
- finally HSTS should also be enabled.
With this it should be able to get A+: <- bosses like that stuff!
Note I am a paying customer, I buy 5-years 40-licences on 2015-03-17.
Thanks!
https://www.ssllabs.com/ssltest/
- ssl2 support should be removed, also from the GUI;
- ssl3 should also be safely removed, only browser requiring it is ie6 on winxp; most web server are disabling it: https://www.trustworthyinternet.org/ssl-pulse/
- also i get this: The server does not support Forward Secrecy with the reference browsers. Grade reduced to A-
- finally HSTS should also be enabled.
With this it should be able to get A+: <- bosses like that stuff!
Note I am a paying customer, I buy 5-years 40-licences on 2015-03-17.
Thanks!