> I have problems to access the KGS server. My Firefox 40.0.3 > (under Windows 8.1) is even not allowing me to visit the website > www.gokgs.com. > Argument: "Diffie-Hellman key is too weak"
Here is how to have Firefox not be so fussy: http://letusexplain.blogspot.co.uk/2015/08/solved-server-has-weak-ephemeral-diffie.html There seems no workaround for Chrome, so chrome users will still provider the consumer pressure on server operators to install a more secure key. Here is background of what it is defending against: http://arstechnica.com/security/2015/05/https-crippling-attack-threatens-tens-of-thousands-of-web-and-mail-servers/ I.e. my understanding is that it allows a hacker to user a man-in-the-middle attack, so effectively https with a 512-bit key is as secure as http... but only if you believe someone is actively trying to eavesdrop on your browser session. In the case of IGS, it could be that the NSA is trying to sniff out people using the Chinese Opening, as a way to build up a list of potential commie activists, so lets hope the SSL certificate is fixed soon... Darren _______________________________________________ Computer-go mailing list [email protected] http://computer-go.org/mailman/listinfo/computer-go
