So was doing some tightening up of security on one of our servers. Everything was going good and was going through things step by step and then suddenly the testing site started giving the message "The server does not have SSL/TLS encryption on port 443. Data exchange with end-users can be intercepted.".
[removed due to use of real domain names]
The Plesk server hasn't suffered the same fate though, so it's odd!
[removed due to use of real domain names]
I have tried changing back all the settings I made changes to (SSL Protocols, Ciphers etc.), but the error message still comes up.
We use LiteSpeed, but as it is still tied into Apache, I have rebuilt the config, force reinstalled LiteSpeed and still hasn't resolved it.
Qualys SSL Labs sees it as OK:
[removed due to use of real domain names]
The only issue here is that I have tried to get TLSv1.1 to work, but it doesn't seem to pick up the settings, or at one point when changing settings it had both TLSv1.0 and TLSv1.1 working, but I don't want TLSv1.0.
Any help would be appreciated, as this is a production server, and I am worried that although everything seems to be working fine, and one test says it's OK, I would rather make sure it is fully working. Things like this tend to bug me!
Cheers
[removed due to use of real domain names]
The Plesk server hasn't suffered the same fate though, so it's odd!
[removed due to use of real domain names]
I have tried changing back all the settings I made changes to (SSL Protocols, Ciphers etc.), but the error message still comes up.
We use LiteSpeed, but as it is still tied into Apache, I have rebuilt the config, force reinstalled LiteSpeed and still hasn't resolved it.
Qualys SSL Labs sees it as OK:
[removed due to use of real domain names]
The only issue here is that I have tried to get TLSv1.1 to work, but it doesn't seem to pick up the settings, or at one point when changing settings it had both TLSv1.0 and TLSv1.1 working, but I don't want TLSv1.0.
Any help would be appreciated, as this is a production server, and I am worried that although everything seems to be working fine, and one test says it's OK, I would rather make sure it is fully working. Things like this tend to bug me!
Cheers
Last edited by a moderator: