See the IDS alert: http://urlquery.net/report.php?id=1478908516374
Website Insecure Tracking: 100% of the trackers on this site could be protecting you from NSA snooping. Tell -odu.edu to fix it.
Identifiers | All Trackers
Insecure Identifiers
Unique IDs about your web browsing habits have been insecurely sent to third parties.
v1%3a1476XXXXX690399361 Twitter guest_id
Blocked for me from that page was: uBlock₀ has prevented the loading of the following page:
htxp://script.crazyegg.com/
Because of the following filter
||script.crazyegg dot com^
Found in: hpHosts’ Ad and tracking servers • MVPS HOSTS
Retirable jQuery library: http://odu.edu/compsci
Detected libraries:
jquery - 1.8.1 : (active1) -http://ajax.googleapis.com/ajax/libs/jquery/1.8.1/jquery.min.js
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
Info: Severity: medium
https://github.com/jquery/jquery/issues/2432
http://blog.jquery.com/2016/01/08/jquery-2-2-and-1-12-released/
(active) - the library was also found to be active by running code
1 vulnerable library detected
F-F-F-X status: https://observatory.mozilla.org/analyze.html?host=odu.edu :o
and C-Status with three issues here: https://sritest.io/#report/e107d36e-4abf-45c0-b566-bc8ea742339b
Checked on certificate: Warnings
RC4
Your server’s encryption settings are vulnerable. This server uses the RC4 cipher algorithm which is not secure. More information.
Root installed on the server.
For best practices, remove the self-signed root from the server.
polonus (volunteer website security analyst and website error-hunter)
