After reading up on my jobs new proxy implementation (and the IT managers probably getting yelled at for filtering out about half the sites admin employees need to do their job.. yes my phone ran ALL. DAY. LONG.) they *FINALLY* put out some documentation on what is filtered, and what will be allowed. Better a week late than never, I guess.
Anyway, I point one of the tools at my personal web sites:
- sslreport.PNG (20.6 KiB) Viewed 3794 times
Not bad. The issue with using nerd tools is that you have no way to categorize what the parameters are. For example my site got a B because its allows the RC4 cipher... which it does. But its an RC4 attack is very difficult to pull off, and all in all considered a very low probability of success. But because the tools
author wants a perfect world, free from every attack possible, no matter probability or practicality, they cap your 'score' at a B. Its kind of like taking a test and giving the right answer, but not the teachers right answer.