[aklug] Re: If you are still running SSLv2, you should disable it ASAP

From: Royce Williams <royce@tycho.org>
Date: Wed Mar 02 2016 - 10:31:17 AKST

Also note that it's in everyone's best interest to double-check your cached
results from the discoverers:

https://test.drownattack.com

... because they checked POP/IMAP/SMTP/STARTTLS as well.

Note, however, if your MX records are through someone else, note that they
won't correlate that for you. For example, if you're doing ProofPoint
hosted mail filtering, you can check the domain directly:

https://test.drownattack.com/?site=pphosted.com

... but it will never show up if you just search for "example.net".

In theory, it seems doable to script an MX lookup for known Alaskan
domains, and then check for SSLv2 against them ... but may not have the
cycles in time, so please check for your own areas. :)

Royce

On Tue, Mar 1, 2016 at 9:00 PM, Royce Williams <royce@tycho.org> wrote:

> Did a fresh scan against known Alaskan hosts - attached are those that
> still offer SSLv2 and should be adjusted ASAP. Sorted by TLD, then domain,
> then host (so that hosts in the same domain are grouped together).
>
> Royce
> ‚Äč
>

---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Wed Mar 2 08:49:28 2016

This archive was generated by hypermail 2.1.8 : Wed Mar 02 2016 - 08:49:28 AKST