On Thu, Jul 05, 2018 at 02:02:04AM +0000, Peter Gutmann wrote: > Ilari Liusvaara <ilariliusva...@welho.com> writes: > > >Chrome initially did that. It caused quite a lot of bad feedback from owners > >of various bad embedded stuff. The thread on relevant forums was quite > >something. Hundreds of messages blaming Google for breaking stuff. > > If there were "hundreds of messages" doesn't that indicate that it's Chrome > that's the problem, and not everyone else?
Basically with DHE in TLS 1.2, you have very few choices: 1) Advertise DHE, accept weak groups. Vulernable to LOGJAM. 2) Advertise DHE, deny weak groups. Unacceptable failure rates. 3) Do not advertise DHE. Loses FPS with some servers. 4) Try DHE at first and fallback to RSA on too small group. Complex. -Ilari _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
