Namecoin Forum

The first secure, decentralized, human-meaningful naming system.
https://forum.namecoin.org/

LogJam TLS vulnerability

https://forum.namecoin.org/viewtopic.php?f=20&t=2307

Page 1 of 1

LogJam TLS vulnerability

Posted: Thu May 21, 2015 10:41 pm
by cassini
Lots of TLS-related services affected. Browsers, servers, VPNs, SSH, mail clients, etc.
see https://weakdh.org/
In-depth analysis: https://weakdh.org/imperfect-forward-secrecy.pdf
Instructions for admins: https://weakdh.org/sysadmin.html

Re: LogJam TLS vulnerability

Posted: Fri May 22, 2015 2:24 pm
by phelix
The NSA is such a pain. I wonder how much more of the world's time, money and mental health they want to waste.

Re: LogJam TLS vulnerability

Posted: Fri May 22, 2015 10:47 pm
by biolizard89
It's hard to blame this one on the NSA directly. All affected servers had already been getting an F on SSLLabs for ages. Fun fact, my university's service that lets you see your grades is affected. (OU's IT people are beyond incompetent. Someone should sue them for endangering student record privacy.)
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited