Au contraire: I think WMF has a responsibility to ensure the safety and security of its editors, who might be working on topics controversial in their home regions. --scott On Jul 29, 2013 9:36 PM, "Tyler Romeo" <[email protected]> wrote:
> Yeah, I think MediaWiki has much more important security issues to worry > about than their TLS configurations. :P > > *-- * > *Tyler Romeo* > Stevens Institute of Technology, Class of 2016 > Major in Computer Science > www.whizkidztech.com | [email protected] > > > On Mon, Jul 29, 2013 at 9:34 PM, Chad <[email protected]> wrote: > > > On Mon, Jul 29, 2013 at 2:03 PM, Thomas Gries <[email protected]> wrote: > > > > > Am 29.07.2013 21:31, schrieb Ryan Lane: > > > > > > > >> That ssllabs link also shows that wikimedia has RC4 encryption > enabled > > > >> on SSL connections, which offers no real security. This is > apparently > > > >> related to the TLS 1.0 -vs- TLS 1.1/1.2 issue: > > > >> > > > >> > > > > > > https://community.qualys.com/blogs/securitylabs/2013/03/19/rc4-in-tls-is-broken-now-what > > > >> --scott > > > >> > > > > > > Ryan: > > > > > > check with https://www.ssllabs.com/ssltest/ > > > > > > Example for https://en.wikipedia.org > > > https://www.ssllabs.com/ssltest/analyze.html?d=en.wikipedia.org > > > > > > > > We do better than the check site itself ;-) > > > > https://www.ssllabs.com/ssltest/analyze.html?d=ssllabs.com > > > > -Chad > > _______________________________________________ > > Wikitech-l mailing list > > [email protected] > > https://lists.wikimedia.org/mailman/listinfo/wikitech-l > > > _______________________________________________ > Wikitech-l mailing list > [email protected] > https://lists.wikimedia.org/mailman/listinfo/wikitech-l _______________________________________________ Wikitech-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikitech-l
