LogJam exploit can force TLS down to 512 bytes, does it affect us? ?

Mark Felder feld at FreeBSD.org
Thu May 21 14:22:07 UTC 2015

Previous message (by thread): LogJam exploit can force TLS down to 512 bytes, does it affect us? ?
Next message (by thread): LogJam exploit can force TLS down to 512 bytes, does it affect us? ?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]


On Wed, May 20, 2015, at 17:48, Xin Li wrote:
]> 
> Well, currently OpenSSL do accept weak DH so _arguably_ it does affect
> FreeBSD, and it's likely to break existing applications if we enforce
> such restrictions (namely, Java 6).
> 

AFAIK, Java doesn't support >1024 DH key until Java 8.

Previous message (by thread): LogJam exploit can force TLS down to 512 bytes, does it affect us? ?
Next message (by thread): LogJam exploit can force TLS down to 512 bytes, does it affect us? ?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the freebsd-ports mailing list