- From: Henry Story <henry.story@bblfish.net>
- Date: Wed, 16 May 2012 18:39:49 +0200
- To: Andrei Sambra <andrei@fcns.eu>
- Cc: public-webid@w3.org
On 16 May 2012, at 18:33, Andrei Sambra wrote: > I'm trying to avoid BEAST attacks, so I have the following lines in my httpd config file: > > SSLHonorCipherOrder On > SSLCipherSuite ECDHE-RSA-AES128-SHA256:AES128-GCM-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH You mean this? https://community.qualys.com/blogs/securitylabs/2011/10/17/mitigating-the-beast-attack-on-tls > > Andrei > >>> To solve the ssl error, you could try to enable all the SSL schemas in "about:config", since I've configured the server to accept only TLSv1, and a few strong ciphers. >> >> Why do you do that, as a matter of interest? >> Social Web Architect http://bblfish.net/
Received on Wednesday, 16 May 2012 16:40:26 UTC