Date: Thu, 21 May 2015 09:21:59 -0500 From: Mark Felder <feld@FreeBSD.org> To: freebsd-ports@freebsd.org Subject: Re: LogJam exploit can force TLS down to 512 bytes, does it affect us? ? Message-ID: <1432218119.630206.274805281.0C31484D@webmail.messagingengine.com> In-Reply-To: <555D0F37.8040605@delphij.net> References: <201505202140.t4KLekE6081029@fire.js.berklix.net> <555D0F37.8040605@delphij.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, May 20, 2015, at 17:48, Xin Li wrote: ]> > Well, currently OpenSSL do accept weak DH so _arguably_ it does affect > FreeBSD, and it's likely to break existing applications if we enforce > such restrictions (namely, Java 6). > AFAIK, Java doesn't support >1024 DH key until Java 8.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1432218119.630206.274805281.0C31484D>