Sorry for posting the results so late. Overall, nothing surprising, many servers haven't fixed the Logjam vulnerability. We have reached over half a million servers supporting TLS in Alexa top 1 million. As always, detailed analysis on my blog: https://securitypitfalls.wordpress.com/2015/06/20/may-2015-scan-results/ SSL/TLS survey of 504133 websites from Alexa's top 1 million Stats only from connections that did provide valid certificates (or anonymous DH from servers that do also have valid certificate installed) Supported Ciphers Count Percent -------------------------+---------+------- 3DES 422205 83.7487 3DES Only 902 0.1789 AES 492766 97.7452 AES Only 15398 3.0544 AES-CBC 492668 97.7258 AES-CBC Only 8199 1.6264 AES-GCM 328750 65.211 AES-GCM Only 32 0.0063 CAMELLIA 216646 42.974 CAMELLIA Only 2 0.0004 CHACHA20 63418 12.5796 Insecure 78500 15.5713 RC4 277296 55.0045 RC4 Only 2038 0.4043 RC4 Preferred 39565 7.8481 RC4 forced in TLS1.1+ 22536 4.4702 x:FF 29 RC4 Only 2395 0.4751 x:FF 29 RC4 Preferred 44134 8.7544 x:FF 29 incompatible 105 0.0208 x:FF 35 RC4 Only 2735 0.5425 x:FF 35 RC4 Preferred 44278 8.783 x:FF 35 incompatible 108 0.0214 y:DHE-RSA-SEED-SHA 105410 20.9092 y:IDEA-CBC-SHA 86047 17.0683 y:SEED-SHA 103682 20.5664 z:ADH-AES128-GCM-SHA256 332 0.0659 z:ADH-AES128-SHA 1298 0.2575 z:ADH-AES128-SHA256 242 0.048 z:ADH-AES256-GCM-SHA384 344 0.0682 z:ADH-AES256-SHA 1307 0.2593 z:ADH-AES256-SHA256 244 0.0484 z:ADH-CAMELLIA128-SHA 803 0.1593 z:ADH-CAMELLIA256-SHA 814 0.1615 z:ADH-DES-CBC-SHA 368 0.073 z:ADH-DES-CBC3-SHA 1324 0.2626 z:ADH-RC4-MD5 1177 0.2335 z:ADH-SEED-SHA 719 0.1426 z:AECDH-AES128-SHA 17948 3.5602 z:AECDH-AES256-SHA 17959 3.5624 z:AECDH-DES-CBC3-SHA 17905 3.5516 z:AECDH-NULL-SHA 43 0.0085 z:AECDH-RC4-SHA 17242 3.4201 z:DES-CBC-MD5 15026 2.9806 z:DES-CBC-SHA 42323 8.3952 z:DES-CBC3-MD5 29340 5.8199 z:ECDHE-RSA-NULL-SHA 56 0.0111 z:EDH-RSA-DES-CBC-SHA 36108 7.1624 z:EXP-ADH-DES-CBC-SHA 279 0.0553 z:EXP-ADH-RC4-MD5 280 0.0555 z:EXP-DES-CBC-SHA 21187 4.2027 z:EXP-EDH-RSA-DES-CBC-SHA 17630 3.4971 z:EXP-RC2-CBC-MD5 25641 5.0862 z:EXP-RC4-MD5 27062 5.368 z:EXP1024-DES-CBC-SHA 6792 1.3473 z:EXP1024-RC4-SHA 6883 1.3653 z:IDEA-CBC-MD5 2594 0.5145 z:NULL-MD5 281 0.0557 z:NULL-SHA 286 0.0567 z:NULL-SHA256 23 0.0046 z:RC2-CBC-MD5 15367 3.0482 z:RC4-64-MD5 1245 0.247 Cipher ordering Count Percent -------------------------+---------+------- Client side 135237 26.8257 Server side 368896 73.1743 Supported Handshakes Count Percent -------------------------+---------+------- ADH 1435 0.2846 AECDH 17990 3.5685 DHE 286817 56.8931 ECDH 1 0.0002 ECDHE 352323 69.8869 ECDHE and DHE 195467 38.7729 RSA 459524 91.1513 Supported PFS Count Percent PFS Percent -------------------------+---------+--------+----------- DH,1024bits 229119 45.4481 79.8833 DH,1536bits 1 0.0002 0.0003 DH,2048bits 50894 10.0954 17.7444 DH,2236bits 3 0.0006 0.001 DH,3072bits 2379 0.4719 0.8294 DH,4094bits 1 0.0002 0.0003 DH,4096bits 3569 0.7079 1.2443 DH,512bits 81 0.0161 0.0282 DH,768bits 805 0.1597 0.2807 DH,8192bits 1 0.0002 0.0003 ECDH,B-163,163bits 1 0.0002 0.0003 ECDH,B-571,570bits 1580 0.3134 0.4485 ECDH,K-571,570bits 1 0.0002 0.0003 ECDH,P-224,224bits 63 0.0125 0.0179 ECDH,P-256,256bits 344044 68.2447 97.6502 ECDH,P-384,384bits 3587 0.7115 1.0181 ECDH,P-521,521bits 5548 1.1005 1.5747 Prefer DH,1024bits 87818 17.4196 30.6181 Prefer DH,2048bits 3211 0.6369 1.1195 Prefer DH,2236bits 1 0.0002 0.0003 Prefer DH,3072bits 30 0.006 0.0105 Prefer DH,4096bits 105 0.0208 0.0366 Prefer DH,512bits 4 0.0008 0.0014 Prefer DH,768bits 404 0.0801 0.1409 Prefer ECDH,B-163,163bits 1 0.0002 0.0003 Prefer ECDH,B-571,570bits 1365 0.2708 0.3874 Prefer ECDH,K-571,570bits 1 0.0002 0.0003 Prefer ECDH,P-224,224bits 36 0.0071 0.0102 Prefer ECDH,P-256,256bits 286974 56.9243 81.452 Prefer ECDH,P-384,384bits 2591 0.514 0.7354 Prefer ECDH,P-521,521bits 5220 1.0354 1.4816 Prefer PFS 387761 76.9164 0 Support PFS 443673 88.0071 0 Supported ECC curves Count Percent -------------------------+---------+-------- brainpoolP256r1 294 0.0583 brainpoolP384r1 294 0.0583 brainpoolP512r1 294 0.0583 prime192v1 1589 0.3152 prime256v1 351551 69.7338 prime256v1 Only 305875 60.6735 secp160k1 1561 0.3096 secp160r1 1566 0.3106 secp160r2 1561 0.3096 secp192k1 1580 0.3134 secp224k1 1628 0.3229 secp224r1 2813 0.558 secp224r1 Only 3 0.0006 secp256k1 1637 0.3247 secp384r1 45923 9.1093 secp384r1 Only 242 0.048 secp521r1 13392 2.6564 secp521r1 Only 97 0.0192 sect163k1 1569 0.3112 sect163k1 Only 1 0.0002 sect163r1 1568 0.311 sect163r2 1568 0.311 sect163r2 Only 1 0.0002 sect193r1 1566 0.3106 sect193r2 1566 0.3106 sect233k1 1625 0.3223 sect233r1 1624 0.3221 sect239k1 1624 0.3221 sect283k1 1623 0.3219 sect283r1 1621 0.3215 sect409k1 1620 0.3213 sect409r1 1617 0.3207 sect571k1 1627 0.3227 sect571r1 1627 0.3227 Unsupported curve fallback Count Percent ------------------------------+---------+-------- False 80726 16.0128 True 223171 44.2683 order-specific 14 0.0028 unknown 200222 39.7161 ECC curve ordering Count Percent -------------------------+---------+-------- client 2652 0.5261 inconclusive-noecc 26 0.0052 server 349247 69.2768 unknown 152208 30.192 TLSv1.2 PFS supported sigalgs Count Percent ------------------------------+---------+-------- ECDSA-SHA1 34911 6.925 ECDSA-SHA1 Only 1 0.0002 ECDSA-SHA224 34925 6.9277 ECDSA-SHA256 34948 6.9323 ECDSA-SHA384 34966 6.9359 ECDSA-SHA512 34985 6.9396 ECDSA-SHA512 Only 19 0.0038 RSA-MD5 147472 29.2526 RSA-SHA1 310804 61.6512 RSA-SHA1 Only 46467 9.2172 RSA-SHA224 250624 49.7139 RSA-SHA256 269299 53.4182 RSA-SHA256 Only 4125 0.8182 RSA-SHA384 251575 49.9025 RSA-SHA512 251692 49.9257 RSA-SHA512 Only 54 0.0107 TLSv1.2 PFS ordering Count Percent ------------------------------+---------+-------- client 228686 45.3622 indeterminate 15 0.003 intolerant 2751 0.5457 order-fallback 23 0.0046 server 119546 23.7132 unsupported 33304 6.6062 TLSv1.2 PFS sigalg fallback Count Percent ------------------------------+---------+-------- ECDSA SHA1 34893 6.9214 ECDSA intolerant 113 0.0224 RSA False 143034 28.3723 RSA SHA1 141505 28.069 RSA intolerant 27098 5.3752 RSA soft-nopfs 4560 0.9045 Renegotiation Count Percent -------------------------+---------+-------- False 8495 1.6851 insecure 24563 4.8723 secure 471075 93.4426 Compression Count Percent -------------------------+---------+-------- 1 (zlib compression) 12816 2.5422 False 8495 1.6851 NONE 482822 95.7727 TLS session ticket hint Count Percent -------------------------+---------+-------- 1 3 0.0006 1 only 3 0.0006 2 3 0.0006 2 only 3 0.0006 5 2 0.0004 5 only 2 0.0004 10 7 0.0014 10 only 7 0.0014 15 10 0.002 15 only 10 0.002 30 10 0.002 30 only 9 0.0018 60 98 0.0194 60 only 93 0.0184 70 7 0.0014 100 21 0.0042 100 only 21 0.0042 120 27 0.0054 120 only 27 0.0054 128 2 0.0004 128 only 2 0.0004 150 2 0.0004 180 48 0.0095 180 only 46 0.0091 240 10 0.002 240 only 10 0.002 300 219015 43.4439 300 only 213209 42.2922 360 1 0.0002 400 8 0.0016 400 only 8 0.0016 420 108 0.0214 420 only 66 0.0131 480 12 0.0024 480 only 12 0.0024 500 4 0.0008 500 only 4 0.0008 600 16066 3.1869 600 only 15898 3.1535 720 2 0.0004 720 only 2 0.0004 900 742 0.1472 900 only 707 0.1402 960 2 0.0004 960 only 2 0.0004 1200 2024 0.4015 1200 only 2018 0.4003 1320 1 0.0002 1320 only 1 0.0002 1440 1 0.0002 1440 only 1 0.0002 1500 10 0.002 1500 only 9 0.0018 1800 406 0.0805 1800 only 397 0.0787 2400 6 0.0012 2400 only 6 0.0012 2700 11 0.0022 2700 only 11 0.0022 3000 14 0.0028 3000 only 14 0.0028 3600 442 0.0877 3600 only 422 0.0837 3900 1 0.0002 3900 only 1 0.0002 4100 2 0.0004 4100 only 2 0.0004 4200 1 0.0002 5400 20 0.004 5400 only 3 0.0006 6000 5 0.001 6000 only 5 0.001 7200 16629 3.2985 7200 only 13329 2.6439 10800 2315 0.4592 10800 only 2310 0.4582 14400 73 0.0145 14400 only 72 0.0143 18000 13 0.0026 18000 only 13 0.0026 21600 4826 0.9573 21600 only 4825 0.9571 28800 13 0.0026 28800 only 13 0.0026 36000 1108 0.2198 36000 only 1103 0.2188 43200 28 0.0056 43200 only 25 0.005 60000 1 0.0002 60000 only 1 0.0002 64800 50705 10.0579 64800 only 50654 10.0477 72000 17 0.0034 72000 only 17 0.0034 84600 1 0.0002 84600 only 1 0.0002 86000 45 0.0089 86000 only 45 0.0089 86400 3437 0.6818 86400 only 3436 0.6816 100800 12226 2.4252 100800 only 12226 2.4252 129600 8 0.0016 129600 only 8 0.0016 172800 2 0.0004 172800 only 2 0.0004 216000 1 0.0002 216000 only 1 0.0002 432000 1 0.0002 432000 only 1 0.0002 604800 1 0.0002 604800 only 1 0.0002 864000 3 0.0006 864000 only 3 0.0006 None 183010 36.3019 None only 173532 34.4219 Certificate sig alg Count Percent -------------------------+---------+-------- None 18818 3.7327 ecdsa-with-SHA256 34966 6.9359 sha1WithRSAEncryption 191053 37.8973 sha256WithRSAEncryption 278185 55.1809 sha384WithRSAEncryption 2 0.0004 sha512WithRSAEncryption 7 0.0014 Certificate key size Count Percent -------------------------+---------+-------- ECDSA 256 35000 6.9426 ECDSA 384 6 0.0012 ECDSA 521 2 0.0004 RSA 1024 194 0.0385 RSA 10240 7 0.0014 RSA 2028 1 0.0002 RSA 2047 1 0.0002 RSA 2048 451485 89.5567 RSA 2049 3 0.0006 RSA 2056 2 0.0004 RSA 2058 2 0.0004 RSA 2064 1 0.0002 RSA 2080 2 0.0004 RSA 2084 9 0.0018 RSA 2096 1 0.0002 RSA 2408 2 0.0004 RSA 2432 4 0.0008 RSA 2480 1 0.0002 RSA 2612 2 0.0004 RSA 3050 1 0.0002 RSA 3071 1 0.0002 RSA 3072 104 0.0206 RSA 3096 1 0.0002 RSA 3248 2 0.0004 RSA 4042 1 0.0002 RSA 4048 2 0.0004 RSA 4056 24 0.0048 RSA 4069 1 0.0002 RSA 4086 4 0.0008 RSA 4092 8 0.0016 RSA 4096 17305 3.4326 RSA 8192 6 0.0012 RSA/ECDSA Dual Stack 45 0.0089 OCSP stapling Count Percent -------------------------+---------+-------- Supported 94341 18.7135 Unsupported 409792 81.2865 Supported Protocols Count Percent -------------------------+---------+------- SSL2 29625 5.8764 SSL2 Only 35 0.0069 SSL3 142402 28.2469 SSL3 Only 936 0.1857 SSL3 or TLS1 Only 88722 17.5989 SSL3 or lower Only 968 0.192 TLS1 501347 99.4474 TLS1 Only 51184 10.1529 TLS1 or lower Only 116300 23.0693 TLS1.1 373523 74.0922 TLS1.1 Only 25 0.005 TLS1.1 or up Only 1606 0.3186 TLS1.2 384312 76.2323 TLS1.2 Only 845 0.1676 TLS1.2, 1.0 but not 1.1 12411 2.4619 Statistics from 515219 chains provided by 689528 hosts Server provided chains Count Percent -------------------------+---------+------- complete 449551 65.1969 incomplete 37540 5.4443 untrusted 202437 29.3588 Trusted chain statistics ======================== Chain length Count Percent -------------------------+---------+------- 2 345 0.067 3 295875 57.427 4 213966 41.5291 5 5031 0.9765 6 2 0.0004 CA key size in chains Count -------------------------+--------- ECDSA 256 34881 ECDSA 384 60711 RSA 1024 39543 RSA 2045 1 RSA 2048 1016373 RSA 4096 102618 Chains with CA key Count Percent -------------------------+---------+------- ECDSA 256 34881 6.7701 ECDSA 384 60711 11.7835 RSA 1024 39539 7.6742 RSA 2045 1 0.0002 RSA 2048 479801 93.1256 RSA 4096 102053 19.8077 Signature algorithm (ex. root) Count ------------------------------+--------- ecdsa-with-SHA384 34881 sha1WithRSAEncryption 285370 sha256WithRSAEncryption 244990 sha384WithRSAEncryption 173666 sha512WithRSAEncryption 1 Eff. host cert chain LoS Count Percent -------------------------+---------+------- 80 240612 46.7009 112 239734 46.5305 128 34873 6.7686 Root CAs Count Percent ---------------------------------------------+---------+------- (861a399d) AddTrust Class 1 CA Root 126924 24.635 (2c543cd1) GeoTrust Global CA 111533 21.6477 (f081611a) The Go Daddy Group, Inc. 54113 10.5029 (5ad8a5d6) GlobalSign Root CA 52056 10.1037 (eed8c118) COMODO ECC Certification Authority 34873 6.7686 (415660c1) VeriSign, Inc. 29756 5.7754 (aee5f10d) Entrust.net Certification Authorit 29671 5.7589 (c089bbbd) thawte Primary Root CA - G2 25836 5.0146 (f387163d) Starfield Technologies, Inc. 11081 2.1507 (ae8153b9) StartCom Certification Authority 9729 1.8883 (578d5c04) Equifax 6768 1.3136 (244b5494) DigiCert High Assurance EV Root CA 6686 1.2977 Scan performed between 24th of May and 3rd of June 2015. -- Regards, Hubert Kario Quality Engineer, QE BaseOS Security team Web: www.cz.redhat.com Red Hat Czech s.r.o., Purkyňova 99/71, 612 45, Brno, Czech Republic
Attachment:
signature.asc
Description: This is a digitally signed message part.
-- security mailing list security@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/security
