I used SSLlabs server test for my website and the test complains that server is vulnerable to DROWN attack:
I contacted my web hoster and he said that he fixed all servers long ago.
And he provided proof that my website is not vulnerable:
|IP address||Hostname||Port||General DROWN||Special DROWN|
|220.127.116.11||stamm-wilbrandt.de||443||Not vulnerable||Not vulnerable||Not vulnerable|
Is there a bug in SSLlabs server test wrt DROWN detection?
Or is pentest-tools.com wrong?