hi folks
sorry my poor english....
all linux users must read https://weakdh.org/...
all must use ecdh ciphers, with diffie hellman key exchange method, only on tls 1.2, on all criptographic conections...
the site above contains all explanations
the great secret is use diffie hellman with at least 2048 bit . all inferior grades are suspect to be broken by some government, because low grade ciphers export laws in 90's
obviously... apply all security patches to yours systems..
On Tue, Jun 02, 2015 at 02:01:47PM +0000, Thorsten Glaser wrote:
Michael Stone <mstone <at> debian.org> writes:
You can mitigate it right now by reconfiguring your server to remove DH
ciphers from SSLCipherSuite.
That’s throwing the baby out with the bathwater and removing the
ability to use PFS with clients that do not use ECC, for whatever
reason (any discussing these reasons is off-topic). So, no. Bad
advice, actually, which should not be given.
That's really something you need to evaluate for yourself. If you've got a reason not to use ECDH and still want PFS then you'll have to do something else. If you're happy to use ECDH and don't care about clients that can't support that, then turning off DH could be a reasonable mitigation. From a practical risk management perspective, even in the face of a threat model that involves attacking crypto, I'd be more worried about the vulnerabilities of something that's so old that it doesn't do ECDH than I'd be about any quibbles over DH vs RSA. If your concern is simply about the security of ECDH then this goes back to "evaluate for yourself". Hopefully someone considers all the pros and cons of whatever crypto configuration they're using.
Mike Stone
--
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: [🔎] c65bb9cc-0930-11e5-9b6a-00163eeb5320@msgid.mathom.us" target="_blank">https://lists.debian.org/[🔎] c65bb9cc-0930-11e5-9b6a-00163eeb5320@msgid.mathom.us