On Thu, 28 Jan 2016 18:05:51 +0100
Tim Kuijsten wrote:
> > It's also worth noting that newer (0.2.7.x) versions of Tor should
> > not be doing DHE except when talking to old versions of Tor, linked
> > against old versions of OpenSSL as ECDH is both mandatory and
> > preferred in the current stabl
It's also worth noting that newer (0.2.7.x) versions of Tor should not
be doing DHE except when talking to old versions of Tor, linked
against old versions of OpenSSL as ECDH is both mandatory and preferred
in the current stable series.
Is ECDH currently mandatory or did you mean ECDHE?
On Thu, 28 Jan 2016 10:35:21 -0500
Nick Mathewson wrote:
> Somebody always asks whether Tor is affected by each OpenSSL advisory,
> so I'm sending this mail in order to get a URL to send people to. :)
>
> Here are today's advisories:
>https://mta.openssl.org/pipermail/openssl-announce/2016-J
Somebody always asks whether Tor is affected by each OpenSSL advisory,
so I'm sending this mail in order to get a URL to send people to. :)
Here are today's advisories:
https://mta.openssl.org/pipermail/openssl-announce/2016-January/61.html
With respect to the first ( "DH small subgroups