Liquid error: undefined method `name' for nil:NilClass
Start a new topic
Solved

TMS.freshphone.co.za Blocked by Kaspersky

Good day all,

I've made multiple clients referencing an issue being able to log into the tms.freshphone.co.za 

I've just experienced the same with Kaspersky installed it is blocking the site and is listed as is depicted in the attached image. 

Is this an issue or a standard type of false negative report or is the client backend not secure Any info would be most appreciated

image

 


Same problem and the only way I can communicate with Freshphone is to uninstall Kaspersky

Hi All


I am not versed in Kapersky, but I am sure that they will have some sort of allow this website setting available. 


Here is the first match on Google of how to allow a website

https://itstillworks.com/unblock-sites-kaspersky-28194.html 

Firefox and Chome report that

 

This site (tms.freshphone.co.za) uses a deprecated version of TLS that will be disabled in March 2020. Please upgrade to TLS 1.2 or 1.3

 Perhaps that's triggering Kaspersky



 

image


Perhaps it has

Please upgrade tms.feshphone.co.za from weak tls 1.0 


According to

https://www.ssllabs.com/ssltest/analyze.html?d=tms.freshphone.co.za&hideResults=on

tms security is rated "F"

  • This server supports SSL 2, which is obsolete and insecure, and can be used against TLS (DROWN attack). Grade set to F.
  • This server is vulnerable to the POODLE TLS attack. Patching required. Grade set to F.
  • This server is vulnerable to the Zombie POODLE vulnerability. Grade set to F.
  • This server is vulnerable to the Sleeping POODLE vulnerability. Grade set to F.
  • This server uses SSL 3, which is obsolete and insecure. Grade capped to B.
  • This server supports only older protocols, but not the current best TLS 1.2. Grade capped to C.
  • This server accepts RC4 cipher, but only with older protocols. Grade capped to B.
  • This server does not support Forward Secrecy with the reference browsers. Grade capped to B.
  • This server does not support Authenticated encryption (AEAD) cipher suites. Grade capped to B.
  • This server supports TLS 1.0. Grade will be capped to B from January 2020.


Firefox:


image

We are in the process of rolling out a new version of the TMS which is using TLS 1.2. Unfortunately we are just dealing with a few bugs before launch, it should be soon though.

I ran that tool on the new TMS dev box and we got a B grade.


Login or Signup to post a comment