Dropped SSLv3 support, moving to SHA256 certificates

On October 14th, the so-called POODLE vulnerability in SSLv3 was published. We remediated this security issue by disabling SSLv3 throughout the freistilbox infrastructure.

To further reduce risks, we’re deprecating SSL certificates using the SHA1 signature algorithm. After thorough review, we have concluded that this change should not affect the majority of freistilbox customers. As you can see on the Digicert Compatibility Chart, all recent web browsers already support the newer SHA256 standard.

If you’d like to check if the SSL certificate for your website still uses the weaker SHA1 algorithm, we recommend using the Qualys SSL server test. The test result should look similar to this:

ssltest

If your certificate still uses SHA1, simply send us a support request and we’ll take care of getting it reissued for you.

Thank you for your trust and continued business,
—your freistilbox Team