See: -apache2-igloo.terrell.dreamhost.com as DROWn vulnerable: https://test.drownattack.com/?site=apache2-igloo.terrell.dreamhost.com
caused -http://sustainabilityhand.com/ to be open to defacement via embedded x-shockwave-flash.
apache2-igloo.terrell.dreamhost.com
Please contact the Certificate Authority for further verification.
You have 1 error
Wrong certificate installed.
The domain name does not match the certificate common name or SAN.
Warnings
Root installed on the server.
For best practices, remove the self-signed root from the server.
Info
BEAST
The BEAST attack is not mitigated on this server.
Certificate information
Common name:
sni.dreamhost.com
SAN:

Valid from:
2015-Aug-11 18:24:23 GMT
Valid to:
2025-Aug-08 18:24:23 GMT
Certificate status:
Unknown
Revocation check method:
Not available
Organization:
DreamHost
Organizational unit:

City/locality:

State/province:
California
Country:
US
Certificate Transparency:
Not embedded in certificate
Serial number:
0badc0ffee
Algorithm type:
SHA256withRSA
Key size:
2048
Certificate chainShow details
sni.dreamhost.comRoot certificate
Server configuration
Host name:
apache2-igloo.terrell.dreamhost.com
Server type:
Apache
IP address:
64.111.124.63
Port number:
443
Protocols enabled:
TLS1.2
TLS1.1
TLS1.0
Protocols not enabled:
SSLv3
SSLv2
Secure Renegotiation:
Enabled
Downgrade attack prevention:
Enabled
Next Protocol Negotiation:
Not Enabled
Session resumption (caching):
Enabled
Session resumption (tickets):
Enabled
Strict Transport Security (HSTS):
Not Enabled
SSL/TLS compression:
Not Enabled
Heartbeat (extension):
Enabled
RC4:
Not Enabled
OCSP stapling:
Not Enabled

Vulnerabilities checked:
Heartbleed
Poodle (TLS)
Poodle (SSLv3)
FREAK
BEAST
CRIME

Server has OpenSSH 5.9p1 Debian 5ubuntu1.8 (Ubuntu Linux; protocol 2.0)
Host: terrell.dreamhost.com; OS: Linux; CPE: cpe:/o:linux:linux_kernel

polonus