[openssl-dev] [openssl.org #3231] default ciphers include insecure export cipher suites
Jeff Hodges via RT
rt at openssl.org
Sun May 3 20:12:45 UTC 2015
I disagree that this is closed with f417997a324037025be61737288e40e171a8218c.
It only removes the EXPORT ciphers, but does not handle the LOW ones. It's
2015, and we can drop them by default now.
openssl ciphers LOW prints out:
EDH-RSA-DES-CBC-SHA:EDH-DSS-DES-CBC-SHA:DH-RSA-DES-CBC-SHA:DH-DSS-DES-CBC-SHA:ADH-DES-CBC-SHA:DES-CBC-SHA:DES-CBC-MD5
Which of these are actually have substantial use without any other cipher
suites available? I have no found any.
On Sat, May 2, 2015 at 8:27 AM Rich Salz via RT <rt at openssl.org> wrote:
> Kurt fixed this with commit f417997a324037025be61737288e40e171a8218c
>
>
More information about the openssl-dev
mailing list