security

Mitigating BEAST on Debian Apache web servers

Submitted by gabster on Tue, 01/15/2013 - 13:36

The BEAST attack touches encryption protocols that came before TLS v1.1.

Basically, the attack would permit an attacker to try and guess the part that precedes the real message, and thus guess the real message. Since the explanation is very technical, I'll let technical people speak on the issue:

edit: please do not apply what is written in this article. RC4 is not a viable solution. please do continue to support only strong cypher suite and force your users to upgrade to more recent browser versions if security is an issue.

Get off my lawn!

Submitted by gabster on Sun, 01/15/2012 - 11:45

What is privacy? "Get off my lawn!" a grandpa would say when law enforcers came on behalf of corporations to take away his land. But some generations later, people would probably say something that sounds more like "I don't need to hide anything, since I'm not doing anything wrong".

What has gone wrong between the generations?

Mitigating BEAST on Debian Apache web servers gabster
Squeezing performance out of nginx gabster
Basics on Nginx configuration gabster
Wait.. what happened to my file? ... oh ... the puppet master blew out my changes. gabster
programming python in pipelines gabster
Slow-transitioning a web site to a new server gabster
Caching puppet responses for greater scalability gabster
Managing your Tomboy/Gnote notes from the CLI gabster
delaying disk decryption for manually giving the password gabster
Iterating through all IP addresses in a puppet ERB template gabster

Main menu

security

Mitigating BEAST on Debian Apache web servers

Tags:

Get off my lawn!

Tags:

Recent content

Syndicate

Recent comments

Search form

Main menu

You are here

security

Mitigating BEAST on Debian Apache web servers

Tags:

Get off my lawn!

Tags:

Recent content

Syndicate

Recent comments