oss-sec mailing list archives
Re: openssl default ciphers
From: "Eric H. Christensen" <echriste () redhat com>
Date: Mon, 4 Nov 2013 14:40:39 -0500
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 On Mon, Nov 04, 2013 at 07:41:49PM +0100, Stefan Bühler wrote:
I think due to BEAST a default collection should include RC4; that is why I included MEDIUM.
BEAST is now mitigated on most browsers so we can drop the very broken RC4 cipher. - -- Eric - -------------------------------------------------- Eric "Sparks" Christensen Red Hat, Inc - Product Security Team sparks () redhat com - sparks () fedoraproject org 097C 82C3 52DF C64A 50C2 E3A3 8076 ABDE 024B B3D1 - -------------------------------------------------- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (GNU/Linux) iQGcBAEBCgAGBQJSd/gxAAoJEB/kgVGp2CYv7EML/RxVGNPGjL/7PLJK85GfANHf hYpT7BSRYWruraXDhk2HhkhaE8IL4GLKZZDsyOfmX/8IHte2K3Dz8+zNKDnu++Qm 0UOxr/n6LurMGk6mXb07Im+91xQ/iWumb7eQG2XqSqlcuQON5YWWFpHXe8dHcru+ ySBWchfVbcIrvH72+BtWinAGTpawCXfaRdRuaqQkyR8bkHbX2xdwwXrfMzVddMOb j9aIpbmReSf9v+HjbWbAgfXt8PZTPyAJPzYOFCA8Da19LGwN0lyX//P6At405pzp 0j841cnjz9qEkQsJnPeXZEbFbbUEz2aBZseCXIMTx4WQ6wH6pfKBWhtrjiC04D/j 9jzEHit9m2H1MJEYuB8bkJzlAuKbF5FgL8qs79Nl1hg0/zWl6sfzhUpXst+EpqCS WpVfR5wacbIQ0cgnUmTyaQ/8mlQh1MBjUzccVdxo0AcM7iRgfkTRusDWHHKf8NrH I/AAbmX0/O+nHH5hML4GxzXelBtE+eMpuFYGKIiNkw== =s/RW -----END PGP SIGNATURE-----
Current thread:
- openssl default ciphers Stefan Bühler (Nov 04)
- Re: openssl default ciphers Daniel Kahn Gillmor (Nov 04)
- Re: openssl default ciphers Eric H. Christensen (Nov 04)
- Re: openssl default ciphers Hanno Böck (Nov 04)
- Re: openssl default ciphers Russ Allbery (Nov 04)
- Re: openssl default ciphers Stefan Bühler (Nov 04)
- Re: openssl default ciphers Mike (Nov 04)
- Re: openssl default ciphers Eric H. Christensen (Nov 04)
- Re: openssl default ciphers leToff (Nov 04)
- Re: openssl default ciphers Stefan Bühler (Nov 05)
- Re: openssl default ciphers Florian Weimer (Nov 05)