MozillaWiki

Talk:Security/Server Side TLS: Difference between revisions

Page Discussion

Talk:Security/Server Side TLS (view source)

Revision as of 12:14, 1 November 2013

233 bytes added ,  1 November 2013
no edit summary
No edit summary
Line 8: Line 8:


RC4-based ciphers '''ought to be completely removed''' from the list, better attacks are coming like this one: https://www.usenix.org/conference/usenixsecurity13/security-rc4-tls'
RC4-based ciphers '''ought to be completely removed''' from the list, better attacks are coming like this one: https://www.usenix.org/conference/usenixsecurity13/security-rc4-tls'
== DSS / DSA ==
Since DSA keys are limited to 1024 bit, and 1024 aren't considered safe anymore, and I see no compatibility issues on the server side to keep them, I suggest we remove all DSS/DSA ciphers from the list for servers.


== Page protection ==
== Page protection ==


This wiki page is protected against changes. Changes must be discussed in this section beforehand. If you have any comments, please leave them here.
This wiki page is protected against changes. Changes must be discussed in this section beforehand. If you have any comments, please leave them here.
Kroeckx
Confirmed users
3

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/747407"