Defect #30255

This site can’t provide a secure connection www.redmine.org uses an unsupported protocol. ERR_SSL_VERSION_OR_CIPHER_MISMATCH

Added by Anatolii Vorona over 1 year ago. Updated 3 months ago.

Status:ClosedStart date:
Priority:NormalDue date:
Assignee:Jean-Philippe Lang% Done:

0%

Category:Website (redmine.org)
Target version:-
Resolution:Fixed Affected version:

Description

I'm using chrome with option --ssl-version-min=tls1.2
And can't access to https://www.redmine.org/
The vulnerabilities within SSL and early TLS are serious.
Please update your SSL/TLS configuration.

!Screenshot from 2018-12-20 09-32-46.png!
!Screenshot from 2018-12-20 09-32-20.png!

I recommend you to check result with this link https://www.ssllabs.com/ssltest/analyze.html?d=www.redmine.org

Screenshot from 2018-12-20 09-32-20.png (37.8 KB) Anatolii Vorona, 2018-12-20 09:38

Screenshot from 2018-12-20 09-32-46.png (106 KB) Anatolii Vorona, 2018-12-20 09:38

History

#2 Updated by Bernhard Rohloff over 1 year ago

The Qualys rating is really awful!
@JPL If we can help you in any kind of way don't feel afraid to ask. :-)

#4 Updated by Franklin Yu about 1 year ago

There has been an issue #29202, but it was marked as duplicate of an internal issue.

#6 Updated by Jan Niggemann (redmine.org team member) 6 months ago

@JPL: We have 6 months before TLS 1.1 support is dropped. How can we assist you / what can we do to get the server updated?

#7 Updated by Go MAEDA 3 months ago

  • Status changed from New to Closed
  • Resolution set to Fixed

www.redmine.org now supports TLS 1.2.

$ curl --tlsv1.2 --head https://www.redmine.org/
HTTP/1.1 200 OK
Date: Fri, 10 Jan 2020 02:15:59 GMT
Server: Apache
X-UA-Compatible: IE=Edge,chrome=1
.
.
.

Also available in: Atom PDF