AnsweredAssumed Answered

Anyone else getting flagged randomly for TLS ROBOT?

Question asked by k_dubb on Dec 14, 2018
Latest reply on Jun 12, 2019 by k_dubb

We are getting random endpioints flagged for TLS ROBOT even when they are not.  We do daily scans and one scan will show vulnerable for one endpoint, the next night it will show it on none with no changes on our end. The next night it might show it on 2 others, and so on.  These are all the same device and SSL is offloaded at the same point so we are not hitting different servers in a pool.  If one was actually vulnerable they all would be. Also SSL Labs, and robot-detect.py shows not vulnerable every time. Also Qualys Support has run random debug scans against these and also shows not vulnerable. We do not believe we are vulnerable, yet it has not been explained to us why we are randomly flagged. 

 

Thanks.

Outcomes