On 07/01/2014 10:50 AM, [email protected] wrote: > > > Hans-Christoph Steiner: >> >> I finally finalized the new official FDroid repo for Guardian Project apps, >> including this copy on S3! >> >> https://s3.amazonaws.com/guardianproject/index.html >> >> https://s3.amazonaws.com/guardianproject/fdroid/repo?fingerprint=B7C2EEFD8DAC7806AF67DFCD92EB18126BC08312A7F2D6F3862E46013C7A6135 >> >> .hc >> > > An error occurred during a connection to s3.amazonaws.com. Cannot > communicate securely with peer: no common encryption algorithm(s). > (Error code: ssl_error_no_cypher_overlap) > > its disappointing & shocking (?) that Amazon doesn't support any DHE or > ECDHE ciphers > > this means every time most android devices connect they'll default back > to RC4_MD5
Yeah, the lack of forward secrecy is lame. Most Android devices seem to use AES-CBC with that site. It isn't perfect, but its not horrible: https://www.ssllabs.com/ssltest/analyze.html?d=s3.amazonaws.com&s=207.171.189.80 .hc -- PGP fingerprint: 5E61 C878 0F86 295C E17D 8677 9F0F E587 374B BE81 _______________________________________________ Guardian-dev mailing list Post: [email protected] List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev To Unsubscribe Send email to: [email protected] Or visit: https://lists.mayfirst.org/mailman/options/guardian-dev/archive%40mail-archive.com You are subscribed as: [email protected]
