SSL Hardening

General discussion and chat (archived)
Locked
asmian

SSL Hardening

Post by asmian » 2014-09-29, 01:07

:silent:
Last edited by asmian on 2014-10-04, 20:23, edited 1 time in total.
Top
User avatar
Moonchild
Pale Moon guru
Pale Moon guru
Posts: 29251
Joined: 2011-08-28, 17:27
Location: Tranås, SE
Contact:
Contact Moonchild

Re: SSL Hardening

Post by Moonchild » 2014-09-29, 07:11

SSL hardening is only needed in high-sec environments that have specific setups for authentication and are very strict in what method/protocol/cipher is allowed. Hardened SSL setups are very strict in how the handshake needs to be done and what methods are accepted. Most notably, most hardened SSL handshakes may not renegotiate or fall back to a different protocol if the first attempt fails. This will not work for many sites on the Internet.

Pale Moon Commander comes with a clear warning: If you don't know what a setting is for, do not touch it. ;)
"Son, in life you do not fight battles because you expect to win, you fight them merely because they need to be fought." -- Snagglepuss
Image
Top
Locked

Return to “General discussion (old)”