• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

About TLS 1.2 and encripted obsolete

Danielllp

Danielllp

New Pleskian
Hi to everybody and thanks to read my post and try to help my ( I hope :) ). I have an ubuntu 14 server with Plesk 12.0 and I have add an Certificated from Rapid SSL for a domain. I had a calification of F in ssllabs at first, but after the fix that I could found in these post now is A. In all browser is the lock in green, but in Google (is in green too), but if I press in see more says "is secured but your conection is using an encripted obsolete AES_256_CBC with HMAC-SHA1 for the message authentication and ECDHE-RSA as key exange mechanism. I have tried update /upgrade server and says that it's no updates. And update openssl but says that I have the 1.0.1f 6 Jan (I tried install 1.0.2d using:
wget http://www.openssl.org/source/openssl-1.0.2d.tar.gz
tar -xvzf openssl-1.0.2d.tar.gz
cd openssl-1.0.2d
./config --prefix=/usr/
make
sudo make install )
And appears like installed, but after install and check I still have 1.0.1f. I don't know if it is relactioned with the issue or somebody could give me some advise. I have tried too: http://kb.odin.com/en/123904 , but when I do this plesk says when I ask the new CSR "openssl failed" .Thank you for read me and your help.
 
Last edited:
Hi! I have updated to 12.5.30 and update / upgrade Ubuntu 14.04.3 TLS, says that It's not any updates. I have reissued the Certificated but Chrome says that the conections is using an encripted obsolete. Could some body give me some advise? Thank you!!
 
Hi Danielllp,

just for your notice: When using a supported Ubuntu version ( AND 14.04 IS currently supported! ), then using apt-get/aptitude is absolutely sufficient, to keep your openssl - package up-to-date. There is no reason, why you would compile openssl from source.

Please check your "ssl-ciphers" - usage in your apache/nginx - configuration files ( and the configuration templates as well, please ).
Hint: Please use the search term "Intermediate" for example with the Forum Search, to search the forum for decent solutions and work-arounds, or visit https://wiki.mozilla.org/Security/Server_Side_TLS for more informations.
 
Hi! UFHH01 thank you so much for your time to answer me. Yes, I uptade frecuently the server and says that 0 updates pending. I belived was for the version of plesk (12), but after update to 12.5 I reissued the certificated an appears as obsolet in Chrome. I will try your advise, thank you again for your help. :)
 
You must log in or register to reply here.

Similar threads

S
Question Safely update Plesk from Onyx to Obsidian
Replies
0
Views
1K
SergioP122
S
Pascal_Netenvie
Question TLS 1.2 ok only if NGINX running
Replies
4
Views
2K
Pascal_Netenvie
Pascal_Netenvie
S
Resolved Let's Encrypt SSL issue on shared hosting (when using port 8443).
Replies
17
Views
10K
seqoi
S
Mark12345
Issue A+ SSL/TLS Test - PCI Compliance - Ciphers - Oh My
Replies
8
Views
4K
Mark12345
Mark12345
Dukemaster
Resolved Server down [Server Certificate/Apache Settings]
2
Replies
20
Views
6K
UFHH01
U
Back
Top