On Do, 2014-01-02 at 19:34 -0800, Julien Pierre wrote:
The new OCSP stapling tests in NSS 3.15.3 are all failing on our Solaris
machines. See error log below.
We have a slightly smaller number of failures on Linux.
Are these tests going out to a public OCSP responder on the Internet ?
On 2014-01-02 18:59, ianG wrote:
On 3/01/14 01:06 AM, Julien Vehent wrote:
3DES isn't broken.
No, but it is end of life. 112bit security for the 2key variant, and an 8
byte block makes it just old. If you've got AES there, use it. Who hasn't
got it?
See
On 3/01/14 19:24 PM, Julien Vehent wrote:
On 2014-01-02 18:59, ianG wrote:
On 3/01/14 01:06 AM, Julien Vehent wrote:
3DES isn't broken.
No, but it is end of life. 112bit security for the 2key variant, and
an 8 byte block makes it just old. If you've got AES there, use it.
Who hasn't got
On 2014-01-03 12:58, ianG wrote:
On 3/01/14 19:24 PM, Julien Vehent wrote:
On 2014-01-02 18:59, ianG wrote:
On 3/01/14 01:06 AM, Julien Vehent wrote:
3DES isn't broken.
No, but it is end of life. 112bit security for the 2key variant, and
an 8 byte block makes it just old. If you've got
On 1/3/2014 2:04 PM, Julien Vehent wrote:
On 2014-01-03 12:58, ianG wrote:
On 3/01/14 19:24 PM, Julien Vehent wrote:
On 2014-01-02 18:59, ianG wrote:
On 3/01/14 01:06 AM, Julien Vehent wrote:
3DES isn't broken.
No, but it is end of life. 112bit security for the 2key variant, and
an 8
On 2014-01-03 16:09, Falcon Darkstar Momot wrote:
If I may weigh in, one could certainly argue that there isn't any benefit
in allowing these people to believe that their HTTPS connections are
actually secure when they're using ciphers that we know to be broken (how
much we know them to be
Kai,
On 1/3/2014 02:40, Kai Engert wrote:
On Do, 2014-01-02 at 19:34 -0800, Julien Pierre wrote:
The new OCSP stapling tests in NSS 3.15.3 are all failing on our Solaris
machines. See error log below.
We have a slightly smaller number of failures on Linux.
Are these tests going out to a
7 matches
Mail list logo
