My site is vulnerable to the SSL FREAK attacks.
Lukas Tribus
luky-37 at hotmail.com
Tue Apr 14 09:54:25 UTC 2015
> i testing this site, "https://tools.keycdn.com/freak"
>
> result message : Vulnerable! The domain www.ktkumhorent.com:443 is
> vulnerable to the SSL FREAK attacks.
Right, also see:
https://www.ssllabs.com/ssltest/analyze.html?d=ktkumhorent.com
Your site is extremely vulnerable, it even allows SSLv2, very weak
ciphers, and is generally vulnerable to a huge number of old issues
that are supposed to be fixed a long time ago.
It does not match your configuration, so there must be a different
proxy, software or other MITM acting as HTTPS server in between.
Check your network.
More information about the nginx
mailing list