[tbb-bugs] #17374 [Tor Browser]: Disable 1024-DH Encryption by default
Tor Bug Tracker & Wiki
blackhole at torproject.org
Mon Oct 19 00:43:48 UTC 2015
#17374: Disable 1024-DH Encryption by default
-----------------------------+----------------------
Reporter: cypherpunks | Owner: tbb-team
Type: defect | Status: new
Priority: Medium | Milestone:
Component: Tor Browser | Version:
Severity: Normal | Keywords:
Actual Points: | Parent ID:
Points: | Sponsor:
-----------------------------+----------------------
https://freedom-to-tinker.com/blog/haldermanheninger/how-is-nsa-breaking-
so-much-crypto/
Seems it very very likely the NSA has already broken both this and 512-bit
encryption so it would be better to disable.
EFF.org recommends turning these 2 values in about:config to false:
security.ssl3.dhe_rsa_aes_128_sha
security.ssl3.dhe_rsa_aes_256_sha
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17374>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tbb-bugs
mailing list