[Ach] [ssllabs-discuss] Minimal recommended cipher suite list, pref. as an interactive SSL Labs page

Hubert Kario hkario at redhat.com
Thu Jun 12 13:09:54 CEST 2014

----- Original Message -----
> From: "Aaron Zauner" <azet at azet.org>
> To: "Hubert Kario" <hkario at redhat.com>
> Cc: "ianG" <iang at iang.org>, ssllabs-discuss at lists.sourceforge.net, "ach at lists.cert.at List Mailing"
> <ach at lists.cert.at>
> Sent: Thursday, June 12, 2014 12:25:10 PM
> Subject: Re: [Ach] [ssllabs-discuss] Minimal recommended cipher suite list, pref. as an interactive SSL Labs page
> Hi Hubert,
> As for Mozillas recommendations: They still have DSS, RC4 and a couple
> of other things in there which we explicitly exclude in our
> recommendations - which I still think is a good idea.

There's nothing wrong with DSS (when used correctly), current standard
allows for keys up to 3072 bit in size so they are basically as secure
as RSA. Also, if you don't have a DSS certificate, presence or absence
of DSS cipher suites has no impact on the supported cipher suites what
so ever (I'm assuming we're still talking about sever side).

While choice of RC4 is bad, they plan to remove it and reinstate 3DES:
https://bugzilla.mozilla.org/show_bug.cgi?id=927045 Real Time Soon™

> Another issue is
> that these cipherstrings work differently on OpenSSL =< 0.9.8 and
> OpenSSL >= 1.0.0 - all do not include GnuTLS (we do not either). As well
> as other TLS libraries.

I assume that you mean the preference of RC4-SHA over AES128-SHA or
AES256-SHA with 0.9.8?

Yeah, that probably should be fixed. Reported:
Hubert Kario

More information about the Ach mailing list