Am 09.09.2013 18:12, schrieb Paul Wouters:
> On Mon, 9 Sep 2013, Reindl Harald wrote:
>>> I don't get it, either
>>
>> google "dhe versus ecdhe performance"
>>
>> http://vincent.bernat.im/en/blog/2011-ssl-perfect-forward-secrecy.html
Let’s focus on the server part. Enabling DHE-RSA-AES128-SH
much support forward secrecy in a way *nobody* else on this
planet is supporting it and so you repsonse below is uneducated - period
Original-Nachricht
Betreff: Re: Fedora/Redhat and perfect forward secrecy
Datum: Mon, 26 Aug 2013 11:07:29 +0200
Von: Florian Weimer
An: Development discuss
Am 06.09.2013 23:31, schrieb D. Hugh Redelmeier:
> | From: Reindl Harald
> | Date: Sat, 24 Aug 2013 11:38:21 +0200
>
> | https://bugzilla.redhat.com/show_bug.cgi?id=3D319901
> |
> | looks like Redhat based systems are the only remaining
> | which does not support EECDHE which is a shame these
On 09/07/2013 12:52 AM, Gregory Maxwell wrote:
> Regardless, I think that argument would be an ignorant one:
> Approximately no one runs non-ECDH PFS on the web: it's insanely slow
> and it breaks clients.
Hmm. Isn't non-ECDH PFS just straight integer (mod N) Diffie-Hellman?
And that's what is in
| From: Reindl Harald
| Date: Sat, 24 Aug 2013 11:38:21 +0200
| https://bugzilla.redhat.com/show_bug.cgi?id=3D319901
|
| looks like Redhat based systems are the only remaining
| which does not support EECDHE which is a shame these
| days in context of PRISM and more and more Ciphers
| are going
Am 26.08.2013 16:24, schrieb Chuck Anderson:
> On Mon, Aug 26, 2013 at 11:17:52AM +0200, Reindl Harald wrote:
>> cause and effect
>> because Fedora does *not* support Ciphers without large performance impacts
>>
>> in reality without ECDHE you have no way
>> go to https://www.ssllabs.com/ssltest/
On 26.08.2013, Alchemist wrote:
> Very good discussion. This is an important issue. OpenSSL with Elliptic
> Curve was added to the http://rpmfusion.org/Wishlist, but the question
> remains open
Is the crypto the real problem (=weakest link), or is it something else? I
guess that would be the re
2013/8/24 Reindl Harald
> https://bugzilla.redhat.com/show_bug.cgi?id=319901
>
> looks like Redhat based systems are the only remaining
> which does not support EECDHE which is a shame these
> days in context of PRISM and more and more Ciphers
> are going to be unuseable (BEAST/CRIME weakness)
>
Am 26.08.2013 11:07, schrieb Florian Weimer:
> On 08/24/2013 11:38 AM, Reindl Harald wrote:
>> https://bugzilla.redhat.com/show_bug.cgi?id=319901
>>
>> looks like Redhat based systems are the only remaining
>> which does not support EECDHE which is a shame these
>> days in context of PRISM and mo
Am 26.08.2013 13:26, schrieb Jan-Frode Myklebust:
> On Mon, Aug 26, 2013 at 11:07:29AM +0200, Florian Weimer wrote:
>> On 08/24/2013 11:38 AM, Reindl Harald wrote:
>>> https://bugzilla.redhat.com/show_bug.cgi?id=319901
>>>
>>> looks like Redhat based systems are the only remaining
>>> which does
https://bugzilla.redhat.com/show_bug.cgi?id=319901
looks like Redhat based systems are the only remaining
which does not support EECDHE which is a shame these
days in context of PRISM and more and more Ciphers
are going to be unuseable (BEAST/CRIME weakness)
___
11 matches
Mail list logo
