Reply to post:

One-third of all HTTPS websites open to DROWN attack


I'd question the 1/3 claim - it has one of my "sites" as affected, yet it's a SMTP server and, because we are PCIDSS compliant, is only used for SMTP so has no HTTP traffic. All the other sites are TLSv1.1/1.2 only so I think you can knock at least 1 site off that 1/3 total.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021