[openssl-users] Question on logjam

Chris Hill chris.hillsec at gmail.com
Thu May 21 01:45:36 UTC 2015


Folks, can you pls confirm that none of the below ciphers are affected by
this logjam bug? From my understanding, only ciphers containing DH or DHE
would be affected.

TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA (0x62)
TLS_RSA_EXPORT1024_WITH_RC4_56_SHA
TLS_RSA_EXPORT_WITH_RC4_40_MD5
TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5
TLS_RSA_WITH_DES_CBC_SHA

The above are weak (e.g. vulnerable to freak), no argument there, but just
want to ensure these are not vulnerable to this newly published bug.

Thanks all!
Chris.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20150520/12135ff3/attachment.html>


More information about the openssl-users mailing list