Untitled

Story: New FREAK Attack Threatens Many SSL ClientsTotal Replies: 2
Author Content
750

Mar 05, 2015
12:47 PM EDT
Can we stop with the fancy names/acronyms already?!
notbob

Mar 05, 2015
1:37 PM EDT
You need to join my long-ago-created anti-acronym group, CR@P. That's Curmudgeons Resisting Acronym Propagation. No admission fee, registration, or CAPTCHA nonsense! ;)
ljmp

Mar 06, 2015
3:18 PM EDT
I read through the article, and there's nothing new in it. If you are vulnerable it just means you haven't been paying attention to your web server ssl settings. I typically use the latest settings and information on:

https://www.ssllabs.com/ssltest/

If your server has been reasonably configured in the last 12 months, you aren't going to vulnerable to the weak cipher or short key length problem. This is as true in 2000 as it is today.

Posting in this forum is limited to members of the group: [ForumMods, SITEADMINS, MEMBERS.]

Becoming a member of LXer is easy and free. Join Us!