After 28 years, SSLv2 is still not gone from the internet

The SSL/TLS protocols have revolutionized secure communication over computer networks, but their beginnings were far from perfect. The first version, SSLv2, released in 1995, quickly revealed numerous security flaws. This led to the development of the more secure SSLv3, which had its own issues. Despite SSLv2 being deprecated since 2011, there are still web servers that support it, including those used for internet banking services. However, the support for SSLv2 is slowly declining, with only 0.35% of web servers currently supporting it. Although SSLv2 may not pose a direct problem since modern browsers can’t use it, its presence on a server may indicate other vulnerabilities. The goal is to continue reducing the number of servers supporting this outdated protocol in the future.

https://isc.sans.edu/diary/After+28+years+SSLv2+is+still+not+gone+from+the+internet+but+were+getting+there/29908

To top