Package: gatling Version: 0.13-5 Severity: normal Hi,
The polarssl version of gatling uses these ciphersuites (in pssl.c): SSL_EDH_RSA_AES_256_SHA, SSL_EDH_RSA_CAMELLIA_256_SHA, SSL_EDH_RSA_AES_128_SHA, SSL_EDH_RSA_CAMELLIA_128_SHA, SSL_EDH_RSA_DES_168_SHA, SSL_RSA_AES_256_SHA, SSL_RSA_CAMELLIA_256_SHA, SSL_RSA_AES_128_SHA, SSL_RSA_CAMELLIA_128_SHA, SSL_RSA_DES_168_SHA, SSL_RSA_RC4_128_SHA, SSL_RSA_RC4_128_MD5, These aren't insecure as such (although maybe the RC4 ones are), but are getting a bit old. Many browsers are also going to stop loading pages from sites using SHA1 at some point. The list should be updated or possibly omitted autogether to use polarssl's default cipherlist. Also there are some custom DH parameters which are only 1024 bit and it might be a good idea to update (or omit) those as well. Thanks, James
signature.asc
Description: This is a digitally signed message part
