So I argumented against ex.: RC4/*DES with the https://jve.linuxwall.info/blog/index.php?post/TLS_Survey
but nothing in reply came in as con.... this looks like a one-sided topic... I still don't understand why couldn't we put the KNOWN weak ciphers in the fucking trash.. do you really think servers that are installed nowadays are still using RC4? WHAT A BRIGHT FUTURE. Cryptographers are shouting LOUDly that do not use RC4/*DES ciphers, use ONLY PFS!!! On Wed, Mar 4, 2015 at 11:56 PM, Theo de Raadt <[email protected]> wrote: > >On Thu, 5 Mar 2015, at 07:37 AM, someone wrote: > >> "interoperable" - you mean there are still softwares that really count > >> and > >> still cannot use/support HIGH ciphers? wow. What a world we live in.. :\ > >> > >> On Wed, Mar 4, 2015 at 7:27 PM, Miod Vallat <[email protected]> wrote: > >> > >> > > "Sometimes you have to break things to make it better" > >> > > >> > Yes, and getting people to stop using LibreSSL because it suddenly is > >> > not interoperable with anything would surely help a lot. > >> > > >> > Instead, we are trying to get developers to try and use LibreSSL > >> > provided libtsl, which defaults to sane, strong crypto choices. > >> > > >> > Miod > >> > > > >Disable RC4 and non-PFS ciphers in Firefox (there are extensions, eg. > >SSleuth, that can help with doing this) and see how many sites stop > > Indeed. > > "thisistheone8888" is someone who throws out uneducated thoughts without > any practice. Oh wait, this is misc. I forgot.
