• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

About TLS 1.2 and encripted obsolete

Danielllp

Danielllp

New Pleskian
Hi to everybody and thanks to read my post and try to help my ( I hope :) ). I have an ubuntu 14 server with Plesk 12.0 and I have add an Certificated from Rapid SSL for a domain. I had a calification of F in ssllabs at first, but after the fix that I could found in these post now is A. In all browser is the lock in green, but in Google (is in green too), but if I press in see more says "is secured but your conection is using an encripted obsolete AES_256_CBC with HMAC-SHA1 for the message authentication and ECDHE-RSA as key exange mechanism. I have tried update /upgrade server and says that it's no updates. And update openssl but says that I have the 1.0.1f 6 Jan (I tried install 1.0.2d using:
wget http://www.openssl.org/source/openssl-1.0.2d.tar.gz
tar -xvzf openssl-1.0.2d.tar.gz
cd openssl-1.0.2d
./config --prefix=/usr/
make
sudo make install )
And appears like installed, but after install and check I still have 1.0.1f. I don't know if it is relactioned with the issue or somebody could give me some advise. I have tried too: http://kb.odin.com/en/123904 , but when I do this plesk says when I ask the new CSR "openssl failed" .Thank you for read me and your help.
 
Last edited:
Hi! I have updated to 12.5.30 and update / upgrade Ubuntu 14.04.3 TLS, says that It's not any updates. I have reissued the Certificated but Chrome says that the conections is using an encripted obsolete. Could some body give me some advise? Thank you!!
 
Hi Danielllp,

just for your notice: When using a supported Ubuntu version ( AND 14.04 IS currently supported! ), then using apt-get/aptitude is absolutely sufficient, to keep your openssl - package up-to-date. There is no reason, why you would compile openssl from source.

Please check your "ssl-ciphers" - usage in your apache/nginx - configuration files ( and the configuration templates as well, please ).
Hint: Please use the search term "Intermediate" for example with the Forum Search, to search the forum for decent solutions and work-arounds, or visit https://wiki.mozilla.org/Security/Server_Side_TLS for more informations.
 
Hi! UFHH01 thank you so much for your time to answer me. Yes, I uptade frecuently the server and says that 0 updates pending. I belived was for the version of plesk (12), but after update to 12.5 I reissued the certificated an appears as obsolet in Chrome. I will try your advise, thank you again for your help. :)
 
You must log in or register to reply here.

Similar threads

Mark12345
Issue A+ SSL/TLS Test - PCI Compliance - Ciphers - Oh My
Replies
8
Views
3K
Mark12345
Mark12345
J
How to start your online store with WooCommerce
Replies
0
Views
3K
joerg
J
D
SSL/TLS Protocol Vulnerability PCI Scan
Replies
8
Views
19K
RalphP
R
Back
Top