In my case, as the mailserver and webserver are behind a proxy (postfix, imap, Roundcube Webmail), I create the certificate on the proxy (nginx) and scp the cert to the mail server. All this is automated with a tiny script.

For Postfix, edit main.cf and change/edit/add these lines (check the right path too!):

smtpd_use_tls = yes
smtpd_tls_key_file = /etc/ssl/letsencrypt/webmail.privkey.pem
smtpd_tls_cert_file = /etc/ssl/letsencrypt/webmail.fullchain.pem
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_exchange_name = /var/run/prng_exch
tls_random_source = dev:/dev/urandom
smtpd_tls_exclude_ciphers = aNULL, eNULL, EXPORT, DES, RC4, MD5, PSK, aECDH, EDH-DSS-DES-CBC3-SHA, EDH-RSA-DES-CDB3-SHA, KRB5-DES, CBC3-SHA
smtpd_tls_dh1024_param_file = /etc/ssl/postfix/dhparams.pem
smtpd_tls_auth_only = yes
smtp_tls_security_level = may
smtpd_use_tls=yes
smtpd_tls_security_level=may
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_tls_loglevel=1
smtp_tls_loglevel=1

And restart postfix: /etc/init.d/postfix restart

As for Courier you’ll need to concatenate the files (again, check the path, it’s most likely /etc/letsencrypt/live/domain/xyz.pem):

cat /etc/ssl/letsencrypt/webmail.privkey.pem /etc/ssl/letsencrypt/webmail.fullchain.pem > /etc/ssl/letsencrypt/webmail.all.pem

Then edit both /etc/courier/pop3d-ssl and /etc/courier/imapd-ssl

And add/change the path of the certificate:

TLS_CERTFILE=/etc/ssl/letsencrypt/webmail.all.pem

And restart Courier: /etc/init.d/courier-imap-ssl restart && /etc/init.d/courier-pop-ssl restart

If you're running Postfix, add this line to main.cf:

Restart Postfix, and retry.

PS: You can set encrypt instead of may -- but this can cause issues with Amavis and/or SpamAssassin.

Once again, this is testing the public websites I can access. There might be other gateways, APIs, etc that are not (as) secure.

It’s worthy to note that some banks are serious about security and fixing their SSL. Most improved their rating and solved all issues (especially getting rid of SHA1 in the chain). However, a couple lowered from B to C (see below). But… No more F’s. :)

The noteworthy changers:

• Hello Bank! went from A to B though due to weak DH,
• Triodos lost their Forward Secrecy,
• Optima from F to A(-) (and a bunch others from B to A, and higher),
• A bunch from B to C due to SSLLabs being more severe (see below). Most did solve some of their issues,
• BKCP is doing a lot wrong.

Update 11 Jan 2016: ABK & BvB updated to A.

Note that not supporting TLS 1.2 or supporting RC4 capped sites to grade B about a year ago; it now caps to grade C (aka SSLLabs is more severe).

Grade A

• Rabobank (A+): no known issues.
• Evi (A+): no known issues.
• Crelan (A+): no known issues.
• Binck (A+): no known issues.
• ING (A+): no known issues.
• Keytrade Bank (A+): no known issues.
• CPH (A+): no known issues.
• NIBC Direct (A+): no known issues.
• AXA (A+): no known issues.
• Delta Lloyd Bank (A): no known issues.
• Deutsche Bank (A): weak signature (SHA1).
• MeDirect Bank (A): no known issues.
• Monte Paschi (A): no known issues.
• Belfius (A): no known issues.
• BNP Paribas Fortis (A): no known issues.
• bpost bank (A): no known issues.
• Argenta (A): no known issues.
• Fortuneo (A): invalid HSTS policy.
• Fintro (A): no known issues.
• DHB Bank (A): no known issues.
• VDK (A): no known issues.
• ABK: (A): no known issues.
• Bank Van Breda (A): no known issues.
• Ogone (payment facilitator -- A): no known issues.
• Moneyou (A-): no Forward Secrecy.
• Record Bank (A-): no Forward Secrecy.
• Triodos (A-): no Forward Secrecy.
• Optima Bank (A-): no Forward Secrecy.
• KBC (A-): no Forward Secrecy.
• Isabel (banking tool for corps -- A-): no Forward Secrecy.

• Hello bank!: Weak Diffie-Hell (aka DH) (info).

• PSA Bank: weak signature (SHA1), no TLS 1.2, no Forward Secrecy.
• beobank: weak DH, no TLS 1.2, RC4 (insecure), no Forward Secrecy, no secure renegotiation.
• BKCP: weak signature (SHA1), no TLS 1.2, RC4 (insecure), no Forward Secrecy, weak DH.

• n/a

• n/a

• n/a

I’ll do my usual slashdot-effect post in a couple of days (it’s already at 10k views today).

Banks that changed rank since last post (all for the better):

• 16/02/2015:
  • Keytrade: B to A
  • Hello Bank!: C to A
  • ING: F to A-
  • Record Bank: F to A-
• 17/02/2015:
  • ABK: F to B
  • Bank Van Breda: C to B
• 18/02/2015:
  • MeDirect: F to A
  • Added 6 new (small) banks
• 27/02/2015
  • Ogone: C to A-
• 02/03/2015
  • Fortuneo: C to B
• 03/03/2015
  • Crelan: B to A

I cannot test Europabank using SSL Labs. I can only speculate they requested SSL Labs to not scan them. I have also added a couple new banks (Delta Lloyd, Deutsche Bank, Moneyou, Fortuneo, BKCP, Binck, and Isabel as bank tool).

I would like to apologise for every IT’er that had a crappy Monday morning, and thank you for fixing SSL so fast. :)

The entire list updated (last partial update 18/02/2015 around 20h00):

I’ve updated the sites to now correctly test the login page and not the main homepage. If that’s not the case somewhere, please tell me.

Grade A

• Rabobank (A+): no known issues. Support for HTTP Strict Transport Security and prevented downgrade attacks.
• Triodos (A+): no known issues. Support for HTTP Strict Transport Security and prevented downgrade attacks.
• Evi (A+): no known issues.
• Crelan (A): weak signature (SHA1).
• Delta Lloyd Bank (A): no known issues. [news post]
• Deutsche Bank (A): weak signature (SHA1).
• Hello bank! (A): no known issues.
• Keytrade Bank (A): weak signature (SHA1, intermediate, very very minor issue).
• MeDirect Bank (A): no known issues. [newsletter: 1, 2]
• Monte Paschi (A): no known issues.
• Belfius (A-): weak signature (SHA1), no Forward Secrecy.
• BNP Paribas Fortis (A-): weak signature (SHA1), no Forward Secrecy.
• bpost bank (A-): weak signature (SHA1), no Forward Secrecy.
• Binck (A-): weak signature (SHA1), no Forward Secrecy.
• Fintro (A-): weak signature (SHA1), no Forward Secrecy.
• ING (A-): no Forward Secrecy. [press release via Standaard]
• Moneyou (A-): weak signature (SHA1), no Forward Secrecy.
• Record Bank (A-): no Forward Secrecy. [news post]
• Isabel (banking tool for big corps - A-): weak signature (SHA1), no Forward Secrecy.
• Ogone (payment facilitator): no Forward Secrecy. [newsletter via twitter]

Grade B

• Argenta: SSL3 (insecure), weak signature (SHA1), RC4 (insecure), no Forward Secrecy.
• ABK: weak signature (SHA1), no TLS 1.2, no Forward Secrecy, no support for secure renegotiation. [update]
• AXA: weak signature (SHA1), SSL3 (insecure), RC4 (insecure), no Forward Secrecy.
• Bank Van Breda: weak signature (SHA1), no TLS 1.2, no Forward Secrecy, no support for secure renegotiation. [update]
• beobank: weak signature (SHA1), no TLS 1.2, RC4 (insecure), no Forward Secrecy.
• BKCP: weak signature (SHA1), no TLS 1.2, RC4 (insecure), no Forward Secrecy. [newsletter]
• CPH: no TLS 1.2, RC4 (insecure), no Forward Secrecy.
• DHB Bank: weak signature (SHA1), RC4 (insecure).
• Fortuneo: weak signature (SHA1), no TLS 1.2, no Forward Secrecy.
• KBC: weak signature (SHA1), no TLS 1.2, no Forward Secrecy.
• NIBC Direct: weak signature (SHA1), RC4 (insecure), no Forward Secrecy.
• VDK: SSL3 (insecure),no TLS 1.2, weak signature (SHA1), RC4 (insecure), no Forward Secrecy

Grade C

• PSA Bank: weak signature (SHA1), no TLS 1.2, RC4 (insecure), no Forward Secrecy.

Grade D

• n/a

Grade E

• n/a

Grade F

• Optima Bank: vulnerable to POODLE attack in SSL3 and TLS format, weak signature (SHA1), RC4, no Forward Secrecy.

Information about SSL Labs grading can be found here. Grade A (+) being the best possible ranking, and F the worst.

Respect to those that send a mailing list to their customers with more detailed information. Communication++

Respect to Rabobank to be the only bank that directly contacted me (officially, not hiding behind a Gmail or Hotmail address) and thanked me for the work I did, asking for more details, etc.

And thank you for an anonymous person, working for one of the big banks, to give me more details about why they are slow at patching this, how legacy works, etc. I wish he could take this discussion public, but alas.

Part three, or how I single-handedly “fixed” SSL at the Belgian banks. ;)

Part one and two are available here. Not related but useful nonetheless NY Times article about bank hackers.

Argenta promised to fix their SSL, so it’s the time to check everything again.

TL;DR: Only Argenta’s status changed for the better.

Those that did not change:

• Rabobank: A+
• Triodos: A+
• Belfius: A-
• BNP Paribas Fortis: A-
• bpost bank: A-
• AXA: B
• beobank: B
• CPH: B
• KBC: B
• Keytrade Bank: B
• Crelan (internet banking): B
• Hello bank!: C
• Bank Van Breda (internet banking): C
  • BvB no longer supports secure renegotiation (which, afaik, it did before). However, it's still rated as C, as this isn't a real issue.
• ING: F
• Record Bank (internet banking): F

Those that did change:

• Argenta (internet banking): F to B
  • No longer vulnerable to POODLE,
  • Support for protocol downgrade attacks prevention,
  • Still using SSL3 (obsolete and insecure),
  • Weak signature (SHA1),
  • RC4 cipher is supported (insecure),
  • No Forward Secrecy.

Still a little way to go for Argenta, but it’s on the right path.

Those that I hadn’t tested before:

• VDK: B
• ABK: F
• MeDirect Bank: F
• Ogone: C (technically not a bank, and promised a fix, but it got delayed).

The entire list updated:

Grade A

• Rabobank (A+): no known issues. Support for HTTP Strict Transport Security and prevented downgrade attacks.
• Triodos (A+): no known issues. Support for HTTP Strict Transport Security and prevented downgrade attacks.
• Belfius (A-): weak signature (SHA1), no Forward Secrecy.
• BNP Paribas Fortis: (A-) weak signature (SHA1), no Forward Secrecy.
• bpost bank: (A-) weak signature (SHA1), no Forward Secrecy.

Grade B

• Argenta: no SSL on main page.
  • internet banking: SSL3 (insecure), weak signature (SHA1), RC4 (insecure), no Forward Secrecy.
• AXA: weak signature (SHA1), SSL3 (insecure), RC4 (insecure), no Forward Secrecy.
• beobank: weak signature (SHA1), no TLS 1.2, RC4 (insecure), no Forward Secrecy.
• CPH: no TLS 1.2, RC4 (insecure), no Forward Secrecy.
• KBC: weak signature (SHA1), no TLS 1.2, no Forward Secrecy.
• Keytrade Bank: weak signature (SHA1), RC4 (insecure).
• VDK: SSL3 (insecure),no TLS 1.2, weak signature (SHA1), RC4 (insecure), no Forward Secrecy
• Crelan: no SSL on main page.
  • internet banking: weak signature (SHA1), SSL3 (insecure), no TLS 1.2, RC4, no Forward Secrecy.

Grade C

• Hello bank!: vulnerable to POODLE attack, weak signature (SHA1), RC4 (insecure).
• Bank Van Breda: no SSL on main page.
  • internet banking: vulnerable to POODLE attack, weak signature (SHA1), no TLS 1.2, no Forward Secrecy, no support for secure renegotiation.
• Ogone: payment facilitator
  • weak signature (SHA1), RC4, vulnerable to POODLE, no Forward Secrecy

Grade D

• n/a

Grade E

• n/a

Grade F

• ABK: SSL2 (insecure), vulnerable to POODLE attack, weak signature (SHA1), RC4 (insecure), no Forward Secrecy, no TLS 1.2.
• ING: vulnerable to POODLE attack, SSL3 (insecure), weak signature (SHA1), RC4 (insecure), no Forward Secrecy.
• MeDirect Bank: vulnerable to POODLE attack, OpenSSL CCS vulnerability (quite bad),
• Record Bank: no SSL on main page.
  • internet banking: vulnerable to POODLE attack, RC4 (insecure), no Forward Secrecy.

Information about SSL Labs grading can be found here. Grade A (+) being the best possible ranking, and F the worst.

Also, shame on you ING. More than any other bank.

Going through my Google Analytics I noticed some noteworthy network domains, which Google discribes as “The fully qualified domain names of your visitors’ Internet service providers (ISPs)”.

There are a few more (Belgian) government institutions and universities, and the top in the list are “(not set)” and “unknown”.

Clearly some people at the banks read the post during their work time. So it’s only fair to recheck the websites… Here goes:

Those that I hadn’t tested before:

• CPH: B
• Record Bank (internet banking): F

Those that did not change:

• Rabobank: A+
• Belfius: A-
• AXA: B
• beobank: B
• KBC: B
• Keytrade Bank: B
• Crelan (internet banking): B
• Hello bank!: C
• Bank Van Breda (internet banking): C
• ING: F
• Argenta (internet banking): F

Those that did change:

• Triodos: A to A+
  • downgrade prevention correctly applied.
• BNP Paribas Fortis: F to A-
  • No longer vulnerable to POODLE,
  • Disabled SSL3 (insecure),
  • Disabled RC4 (insecure),
  • Still using a weak signature (SHA1),
  • No Forward Secrecy.
• bpost bank: F to A-
  • No longer vulnerable to POODLE,
  • Disabled SSL3 (insecure),
  • Disabled RC4 (insecure),
  • Still using a weak signature (SHA1),
  • No Forward Secrecy.

Huge thumbs up for these last three banks! Well done, especially BNP & bpost! :)

Keep on shaming the others.

The entire list updated:

Grade A

• Rabobank (A+): no known issues. Support for HTTP Strict Transport Security and prevented downgrade attacks.
• Triodos (A+): no known issues. Support for HTTP Strict Transport Security and prevented downgrade attacks.
• Belfius (A-): weak signature (SHA1), no Forward Secrecy.
• BNP Paribas Fortis: (A-) weak signature (SHA1), no Forward Secrecy.
• bpost bank: (A-) weak signature (SHA1), no Forward Secrecy.

Grade B

• AXA: weak signature (SHA1), SSL3 (insecure), RC4 (insecure), no Forward Secrecy.
• beobank: weak signature (SHA1), no TLS 1.2, RC4 (insecure), no Forward Secrecy.
• CPH: no TLS 1.2, RC4 (insecure), no Forward Secrecy.
• KBC: weak signature (SHA1), no TLS 1.2, no Forward Secrecy.
• Keytrade Bank: weak signature (SHA1), RC4 (insecure).
• Crelan: no SSL on main page.
  • internet banking: weak signature (SHA1), SSL3 (insecure), no TLS 1.2, RC4, no Forward Secrecy.

Grade C

• Hello bank!: vulnerable to POODLE attack, weak signature (SHA1), RC4 (insecure).
• Bank Van Breda: no SSL on main page.
  • internet banking: vulnerable to POODLE attack, weak signature (SHA1), no TLS 1.2, no Forward Secrecy.

Grade D

• n/a

Grade E

• n/a

Grade F

• ING: vulnerable to POODLE attack, SSL3 (insecure), weak signature (SHA1), RC4 (insecure), no Forward Secrecy.
• Argenta: no SSL on main page.
  • internet banking: vulnerable to POODLE attack, SSL3 (insecure), weak signature (SHA1), RC4 (insecure), no Forward Secrecy.
• Record Bank: no SSL on main page.
  • internet banking: vulnerable to POODLE attack, RC4 (insecure), no Forward Secrecy.

Information about SSL Labs grading can be found here. Grade A (+) being the best possible ranking, and F the worst.

Only providing the weak points. Once there is one SHA1 key in the chain, I will report everything as weak.

Check SSL Labs for a full report, including what they actually did good (if anything).

Grade A

• Rabobank (A+): no known issues. Support for HTTP Strict Transport Security and prevented downgrade attacks.
• Triodos (A): no downgrade attack prevention.
• Belfius (A-): weak signature (SHA1), no Forward Secrecy.

Grade B

• AXA: weak signature (SHA1), SSL3 (insecure), RC4 (insecure), no Forward Secrecy.
• beobank: weak signature (SHA1), no TLS 1.2, RC4 (insecure), no Forward Secrecy.
• KBC: weak signature (SHA1), no TLS 1.2, no Forward Secrecy.
• Keytrade Bank: weak signature (SHA1), RC4 (insecure).
• Crelan: no SSL on main page.
  • internet banking: weak signature (SHA1), SSL3 (insecure), no TLS 1.2, RC4, no Forward Secrecy.

Grade C

• Hello bank!: vulnerable to POODLE attack, weak signature (SHA1), RC4 (insecure).
• Bank Van Breda: no SSL on main page.
  • internet banking: vulnerable to POODLE attack, weak signature (SHA1), no TLS 1.2, no Forward Secrecy.

Grade D

• n/a

Grade E

• n/a

Grade F

• BNP Paribas Fortis: vulnerable to POODLE attack, SSL3 (insecure), weak signature (SHA1), RC4 (insecure), no Forward Secrecy.
• bpost bank: vulnerable to POODLE attack, SSL3 (insecure), weak signature (SHA1), RC4 (insecure), no Forward Secrecy.
• ING: vulnerable to POODLE attack, SSL3 (insecure), weak signature (SHA1), RC4 (insecure), no Forward Secrecy.
• Argenta: no SSL on main page.
  • internet banking: vulnerable to POODLE attack, SSL3 (insecure), weak signature (SHA1), RC4 (insecure), no Forward Secrecy.

Information about SSL Labs grading can be found here. Grade A (+) being the best possible ranking, and F the worst.

PS: none of the domains support IPv6 (while expected, it would have been nice – Belgium has the highest IPv6 adoption rate for end users, but almost no IPv6 websites or businesses).

SSL is clearly the new hype, and this time I won’t be last to join it! ;)

Just going to check how much (if any) SSL slows down my site.

Every http requests gets automatically rewritten to https.