Server update – OpenSSL 1.1.1d

  • LTS for OpenSSL 1.0.2 ended on the 31st of December 2019
  • Added support for TLS 1.3

Zombie POODLE and GOLDENDOODLE vulnerabilities

Early 2019 new vulnerabilities like Zombie POODLE, GOLDENDOODLE, 0-Length OpenSSL and Sleeping POODLE were published for websites that use CBC (Cipher Block Chaining) block cipher modes. These vulnerabilities are applicable only if the server uses TLS 1.2 or TLS 1.1 or TLS 1.0 with CBC cipher modes. SSL Labs discourages the use of CBC-based cipher suites further.

We have let our users to upgrade their browser, and today all CBC based ciphers have been removed to increase the strength of encryption. In practice, this has only removed support for older Safari browsers up to version 8.0 included.