More than 33 percent of all HTTPS servers are vulnerable to DROWN attack.
sorry für copy paste !
A new deadly security vulnerability has been discovered in OpenSSL that affects more than 11 Million modern websites and e-mail services protected by an ancient, long deprecated transport layer security protocol, Secure Sockets Layer (SSLv2). Dubbed DROWN, the highly critical security hole in OpenSSL was disclosed today as a low-cost attack that could decrypt your sensitive, secure HTTPS
ein ausführlicher artikel dazu:
http://thehackernews.com/2016/03/dro...erability.html
AW: More than 33 percent of all HTTPS servers are vulnerable to DROWN attack.
AW: More than 33 percent of all HTTPS servers are vulnerable to DROWN attack.
Kleiner Tipp von mir: mbed TLS verwenden, hat keine Scheunentorcharakteristik, es steht 0:2.
Der Hiawatha Webserver verschlüsselt damit z.B.