[Cryptography] People should turn on PFS in TLS
Ben Laurie
ben at links.org
Fri Sep 6 13:18:05 EDT 2013
On 6 September 2013 18:13, Perry E. Metzger <perry at piermont.com> wrote:
> Google is also now (I believe) using PFS on their connections, and
> they handle more traffic than anyone. A connection I just made to
> https://www.google.com/ came out as, TLS 1.2, RC4_128, SHA1,
> ECDHE_RSA.
>
> It would be good to see them abandon RC4 of course, and soon.
>
In favour of what, exactly? We're out of good ciphersuites.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20130906/4c0b58e4/attachment.html>
More information about the cryptography
mailing list