Not sure if it has been mentioned here. The Better Crypto group at
bettercrypto.org have written a (draft) paper for many of those likely
configurations for net tools. The PDF is here:
https://bettercrypto.org/static/applied-crypto-hardening.pdf
If you're a busy sysadm with dozens of tools to
On Sat, Jan 4, 2014 at 11:59 PM, ianG wrote:
> Not sure if it has been mentioned here. The Better Crypto group at
> bettercrypto.org have written a (draft) paper for many of those likely
> configurations for net tools. The PDF is here:
>
> https://bettercrypto.org/static/applied-crypto-hardening.
ianG writes:
>Not sure if it has been mentioned here. The Better Crypto group at
>bettercrypto.org have written a (draft) paper for many of those likely
>configurations for net tools. The PDF is here:
>
>https://bettercrypto.org/static/applied-crypto-hardening.pdf
>
>If you're a busy sysadm with
On Sun, Jan 5, 2014 at 4:28 AM, Peter Gutmann wrote:
> ...
> There are some pretty weird choices in there though, a number of which seem to
> have been dictated mostly by fashion-statement requirements rather than any
> security need they enable Camellia but disable 3DES (why?),
> they optiona
On Sun, Jan 5, 2014 at 7:28 AM, Peter Gutmann wrote:
>
> There are some pretty weird choices in there though, a number of which seem to
> have been dictated mostly by fashion-statement requirements rather than any
> security need. For example they recommend disabling (if I'm reading the
> OpenSSL
