SSL/TLS 1.0 Problems at the IP Level

What is the name of the domain?

bixbyclemson.com

What is the error number?

N/A

What is the error message?

N/A

What is the issue you’re encountering

I received the following message from a customer regarding their website security and TLS version. Any advice on how to resolve this would be much appreciated: “The Rapid7 SSL alerts operate at the IP level, not the domain level. An IP address can be associated with multiple domains and frequently changes. To help the customer resolve issues, we guide them to the specific IP address. In one case, this is the IP 104.21.64.1, which is linked to four different domains: * http://bixbyclemson.com. As an example, currently, the domain thecurrentpomona.com is associated with this IP and has an issue with SSL 1.0: Manually scanned result (today). Since we (Rapid7) generate alerts at the IP level, it creates the impression that all three other domains are affected as well. This lack of visibility exists in the system and does cause challenges."

What steps have you taken to resolve the issue?

None. I have no idea what Rapid7’s message even means.

Was the site working with SSL prior to adding it to Cloudflare?

Yes

What is the current SSL/TLS setting?

Full

What are the steps to reproduce the issue?

N/A

Cloudflare hosts millions of domains and hundreds (of thousands) on any given IP. This is a false positive. Cloudflare is not your origin and your TLS settings can vary from other domains w/o any impact on your own domain(s).

Basically the alert in place is worthless and can be disabled or ignored for your domains behind Cloudflare. If this was a server you managed it might be meaningful… shmaybe.

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.