[Opendnssec-user] lists.opendnssec.org uses vulnerable TLS re-negotiation
Petr Spacek
pspacek at redhat.com
Fri Mar 20 11:42:03 UTC 2015
Hello!
FYI web portal "lists.opendnssec.org" uses unsafe TLS re-negotiation and is
vulnerable to attacks against TLS.
Firefox 36 with configuration
security.ssl.require_safe_negotiation = True
security.ssl.treat_unsafe_negotiation_as_broken = True
reports this as:
"An error occurred during a connection to lists.opendnssec.org. Peer
attempted old style (potentially vulnerable) handshake. (Error code:
ssl_error_unsafe_negotiation)"
--
Petr Spacek @ Red Hat
More information about the Opendnssec-user
mailing list