[gtld-tech] Fw: TMCH: HIGHLY Insecure SSL config / certificates.
Luc Van Steen1
luc.van.steen at be.ibm.com
Fri Jun 26 10:35:29 UTC 2015
All,
We are currently working on this issue and you will be informed once the
changes have been performed.
Regards,
Luc Van Steen
IT Specialist
Phone: 32-2-339-8377 | Mobile: 32-486-259819
E-mail: luc.van.steen at be.ibm.com
International Business Machines of Belgium sprl / bvba
Siège social / Maatschappelijke zetel: Avenue du Bourget 42 Bourgetlaan,
B-1130 Bruxelles/Brussel
N° d'entreprise / Ondernemingsnr: TVA / BTW BE 0405 912 336
RPM Bruxelles / RPR Brussel
----- Forwarded by Wim Fabri/Belgium/IBM on 26/06/2015 10:28 -----
From: Alexander Mayrhofer <alexander.mayrhofer at nic.at>
To: "gtld-tech at icann.org" <gtld-tech at icann.org>
Date: 26/06/2015 10:14
Subject: [gtld-tech] TMCH: HIGHLY Insecure SSL config /
certificates.
Sent by: gtld-tech-bounces at icann.org
All,
it seems like the TMCH has rolled out a new certificate on the various
marksdb.org interfaces. Besides the fact that the certificate now uses an
intermediate cert that was not delivered with the chain (and hence made
our TLS connect fail initially), we took a look at the general TLS
configuration of the interfaces, and it seems that the TLS configuration
is HIGHLY insecure at the moment:
https://www.ssllabs.com/ssltest/analyze.html?d=ry.marksdb.org (see
"Protocol Details")
Could someone from the TMCH indicate whether they are working on fixing
these serious issues?
Thanks,
Alex
Tenzij hierboven anders aangegeven: / Sauf indication contraire ci-dessus:
/ Unless otherwise stated above:
International Business Machines of Belgium sprl / bvba
Siège social / Maatschappelijke zetel: Avenue du Bourget 42 Bourgetlaan,
B-1130 Bruxelles/Brussel
N° d'entreprise / Ondernemingsnr: TVA / BTW BE 0405 912 336
RPM Bruxelles / RPR Brussel
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mm.icann.org/pipermail/gtld-tech/attachments/20150626/16cb54d3/attachment.html>
More information about the gtld-tech
mailing list