- From: Andrei Sambra <andrei@fcns.eu>
- Date: Wed, 16 May 2012 18:41:04 +0200
- To: Henry Story <henry.story@bblfish.net>
- CC: public-webid@w3.org
On 05/16/2012 06:39 PM, Henry Story wrote: > > On 16 May 2012, at 18:33, Andrei Sambra wrote: > >> I'm trying to avoid BEAST attacks, so I have the following lines in my httpd config file: >> >> SSLHonorCipherOrder On >> SSLCipherSuite ECDHE-RSA-AES128-SHA256:AES128-GCM-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH > > You mean this? > https://community.qualys.com/blogs/securitylabs/2011/10/17/mitigating-the-beast-attack-on-tls > Yes, that one. > >> >> Andrei >> >>>> To solve the ssl error, you could try to enable all the SSL schemas in "about:config", since I've configured the server to accept only TLSv1, and a few strong ciphers. >>> >>> Why do you do that, as a matter of interest? >>> > > Social Web Architect > http://bblfish.net/ >
Received on Wednesday, 16 May 2012 16:41:33 UTC