doi.org has a complex DNS, I'm not sure I'd accept the ssllabs result without double checking it with someone who deeply understands both DNS and HTTPS. cheers stuart -- ...let us be heard from red core to black sky On Thu, Feb 4, 2016 at 5:21 AM, Eric Hellman <[log in to unmask]> wrote: > https://www.ssllabs.com/ssltest/analyze.html?d=dx.doi.org < > https://www.ssllabs.com/ssltest/analyze.html?d=dx.doi.org> > > Someone seem to be on the job there. > > > On Feb 2, 2016, at 2:32 PM, Stuart A. Yeates <[log in to unmask]> wrote: > > > > There are a relatively small number of infrastructure domains to which a > > huge number of our users are exposed: > > > > doi.org > > handle.net > > ... > > > > In my view pretty much anything which can be used as a lever to get them > to > > become more secure has to be a good idea, since these are websites which > we > > have basically no choice about exposing our users to. > > > > cheers > > stuart > > > >