23 Sep
2015
23 Sep
'15
4:16 p.m.
On Wed, Sep 23, 2015 at 07:44:02AM +0100, Peter Fairbrother wrote:
Backwards compatibility and cipher agility also permit cipher suite choice degradation attacks like FREAK and logjam, where weak suites are forced on the user.
Not familiar with these, but forcing DH parameters or weak curve is serious.
ps is there an archive of libreSSL@openbsd anywhere?
At gmane.org, ATM it is down for me.