The Flat Earth Society

The Flat Earth Society => Suggestions & Concerns => Topic started by: xasop on May 30, 2015, 09:08:24 AM

Title: SSL configuration hardening
Post by: xasop on May 30, 2015, 09:08:24 AM

In order to combat the Logjam attack (https://weakdh.org/) against DH key negotiation in TLS, I have restricted our server's supported ciphers and generated stronger DH parameters, per the advice of the cryptographers who published the vulnerability. This impacts any services which use SSL, including the forum, IRC and webchat.

I don't expect anything to break as a result, but please let me know if you are unable to access any services. As SSL is optional on the forum, you can use the non-SSL version to post if you cannot use SSL.

Title: Re: SSL configuration hardening
Post by: rooster on May 30, 2015, 04:20:04 PM

I am unable to access IRC.

Title: Re: SSL configuration hardening
Post by: xasop on May 30, 2015, 04:23:19 PM

Quote from: rooster on May 30, 2015, 04:20:04 PM

I am unable to access IRC.

Fixed. That issue was unrelated to this change, but thanks for letting me know regardless.