Appears vulnerable to Heartbleed

Reported as using TLS 1.0, according to this website: https://www.howsmyssl.com/ All my browsers except TOR give reassuring results on this site. Site reports that TOR's: "SSL Client is Bad", Version is TLS1.0 and is Very Old and possibly susceptible to the BEAST attack. Client supports cipher suites that are known to be INSECURE.

Perhaps there is some purposeful obfuscation going on, or it is referring to the exit node - however the above site is consistent in its results.

Thanks.

Trac:
Username: Richard

added component::applications/tor bundles/installation owner::mikeperry priority::medium reporter::Richard resolution::not a bug status::closed type::defect labels

Trac:
Component: Tor to TorBrowserButton
Owner: N/A to mikeperry

Heartbleed has nothing to do with using a special SSL/TLS version. Thus, this is not a bug. If you complain about just using TLS 1.0, then have a look at #11253 (closed).

Trac:
Resolution: N/A to not a bug
Keywords: tbb-3.0, tor-client, tbb-3.6, tbb-helpdesk-frequent, tbb-beta-2 deleted, N/A added
Status: new to closed
Component: TorBrowserButton to Tor bundles/installation

closed