Guide to Deploying Diffie-Hellman for TLS.
Guide to Deploying Diffie-Hellman for TLS
OK, so apparently I need to look my site’s setup again. I hate these sysadmin problems. I would love to not worry about security issues, trusting my GNU/Linux distro to simply do the right thing. But it can’t upgrade my sites SSL setup. Currently the architecture does no allow that. Each site has config files, each site has its own certificates.
I should probably automate this in some way.
#Web
(Please contact me if you want to remove your comment.)
⁂
Hm, probably this https://letsencrypt.org/ ?
You’d have to wait for it though.
– AlexDaniel 2015-05-20 21:23 UTC
---
Here’s how to secure your browser, in German:
1. in Firefox, visit about:config
2. search for `.dhe`
3. disable them all
For Chrome, the solution is more involved and requires you to visit this page in order to find the spec of the cyphers you want to disable and to start Chrome with the `--cipher-suite-blacklist` parameter in order to blacklist the cyphers you provide.
– Alex Schroeder 2015-05-21 05:38 UTC