New SSL Vulnerability Call POODLE (CVE-2014-3566)


Status
Not open for further replies.
mustafaramadhan

mustafaramadhan

Hosting Guru
diskusiwebhosting.com tidak lulus menurut poodlescan.com. Tenang saja, google dan yahoo juga sama. :39:
 
mustafaramadhan

mustafaramadhan

Hosting Guru
diskusiwebhosting.com tidak lulus menurut poodlescan.com. Tenang saja, google dan yahoo juga sama. :39:
 
junior riau

junior riau

Hosting Guru
Verified Provider
mnordins said:
@junior riau yang discan lewat poodle pake webserver apa om? nginx ato apache?

Ini cipher yang aku pake... webserver nginx... :
  • ECDHE-RSA-AES128-GCM-SHA256
  • ECDHE-ECDSA-AES128-GCM-SHA256
  • ECDHE-RSA-AES256-GCM-SHA384
  • ECDHE-ECDSA-AES256-GCM-SHA384
  • DHE-RSA-AES128-GCM-SHA256
  • DHE-DSS-AES128-GCM-SHA256
  • kEDH+AESGCM:ECDHE-RSA-AES128-SHA256
  • ECDHE-ECDSA-AES128-SHA256
  • ECDHE-RSA-AES128-SHA
  • ECDHE-ECDSA-AES128-SHA
  • ECDHE-RSA-AES256-SHA384
  • ECDHE-ECDSA-AES256-SHA384
  • ECDHE-RSA-AES256-SHA
  • ECDHE-ECDSA-AES256-SHA
  • DHE-RSA-AES128-SHA256
  • DHE-RSA-AES128-SHA
  • DHE-DSS-AES128-SHA256
  • DHE-RSA-AES256-SHA256
  • DHE-DSS-AES256-SHA
  • DHE-RSA-AES256-SHA
  • AES128-GCM-SHA256
  • AES256-GCM-SHA384
  • AES128-SHA
  • AES256-SHA
  • AES
  • CAMELLIA
  • DES-CBC3-SHA
  • !aNULL
  • !eNULL
  • !EXPORT
  • !DES
  • !RC4
  • !MD5
  • !PSK
  • !aECDH
  • !EDH-DSS-DES-CBC3-SHA
  • !EDH-RSA-DES-CBC3-SHA
  • !KRB5-DES-CBC3-SHA
  • !CAMELLIA
Udah di test di poodlescan... alhamdulillah lolos... test ssllabs grade A


Seharusnya proxy nginx cuma ambil yang non ssl om... kalo pake nginxcp lho... kalo tak lihat dari output nya top c ketika dipanggil https... yang aktif apachenya
Click to expand...
web server nya apache cuma dipasangi nginxcp(free) as proxy
iya sih kalau https emang ke apache langsung nah anehnya
yang di server 1 lagi yang run apache only tanpa proxy nginx langsung aman
 
Status
Not open for further replies.

Top