oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: openssl default ciphers

From: "Eric H. Christensen" <echriste () redhat com>
Date: Mon, 4 Nov 2013 14:40:39 -0500
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

On Mon, Nov 04, 2013 at 07:41:49PM +0100, Stefan Bühler wrote:

I think due to BEAST a default collection should include RC4; that is
why I included MEDIUM.


BEAST is now mitigated on most browsers so we can drop the very broken RC4 cipher.

- -- Eric

- --------------------------------------------------
Eric "Sparks" Christensen
Red Hat, Inc - Product Security Team

sparks () redhat com - sparks () fedoraproject org
097C 82C3 52DF C64A 50C2  E3A3 8076 ABDE 024B B3D1
- --------------------------------------------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)
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=s/RW
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: