I have got the openssl 1.0.2
I don't have any ssl.dh-file set.
Still by default lighttpd is negotiating Server Temp Key: DH, 2048 bits
Protocol : TLSv1.2
Cipher: DHE-RSA-AES256-GCM-SHA384
I am surprised for this because once and only once it had negotiated 1024
bits and after that it
On 24/05/2015 05:33, mancha wrote:
On Fri, 22 May 2015 at 11:17:21AM +0100, Matt Caswell wrote:
On 22/05/15 11:11, Nayna Jain wrote:
Hi,
With the latest logjam attack, as I was trying to verify if my
server (lighttpd) accepts DHE_xxx ciphers, I saw that it accepted
and I didn't do any
On Fri, 22 May 2015 at 11:17:21AM +0100, Matt Caswell wrote:
On 22/05/15 11:11, Nayna Jain wrote:
Hi,
With the latest logjam attack, as I was trying to verify if my
server (lighttpd) accepts DHE_xxx ciphers, I saw that it accepted
and I didn't do any configuration setting done for DH
Hi,
With the latest logjam attack, as I was trying to verify if my server
(lighttpd) accepts DHE_xxx ciphers, I saw that it accepted and I didn't
do any configuration setting done for DH parameters explicitly.
But I couldn't verify what is the key length did it use by default
512/1024/2048 ?
On 22/05/15 11:11, Nayna Jain wrote:
Hi,
With the latest logjam attack, as I was trying to verify if my server
(lighttpd) accepts DHE_xxx ciphers, I saw that it accepted and I
didn't do any configuration setting done for DH parameters explicitly.
But I couldn't verify what is the key