Diffie Helman Logjam Vulnerability....
Not sure who's heard, but if you're still using DH, you may want to check and make sure you're not affected.... I posted in the security forum as well, but this seems like fairly big news, so I though I'd post again here....
https://threatpost.com/new-logjam-attack-on-diffie-hellman-threatens-security-of-browsers-vpns/112916
https://threatpost.com/new-logjam-attack-on-diffie-hellman-threatens-security-of-browsers-vpns/112916
Comments
-
dark3d
Member Posts: 76 ■■□□□□□□□□
Are you not using DH?
Bump your keyspace up to 2048+. Then if a nation-state targets you.. you can stop them in their tracks.
CISSP - January 2015
WGU B.S. IT - Security (2/1/2015-6/16/2015)
Working on: MSISA/Radware/Fortinet/Juniper/PAN -
docrice
Member Posts: 1,706 ■■■■■■■■■■
The question is if you're supporting export ciphers in your cipher suites list (in reference to SSL/TLS configurations).Hopefully-useful stuff I've written: http://kimiushida.com/bitsandpieces/articles/