[tor-bugs] #11513 [Tor]: Make UNRESTRICTED_SERVER_CIPHER_LIST non-stupid
Tor Bug Tracker & Wiki
blackhole at torproject.org
Mon Apr 14 17:07:21 UTC 2014
#11513: Make UNRESTRICTED_SERVER_CIPHER_LIST non-stupid
------------------------+-----------------------------------------
Reporter: nickm | Owner:
Type: defect | Status: new
Priority: normal | Milestone: Tor: 0.2.5.x-final
Component: Tor | Version:
Resolution: | Keywords: tor-client 024-backport tls
Actual Points: | Parent ID:
Points: |
------------------------+-----------------------------------------
Comment (by nickm):
Oh, the above didn't rank AES256 vs AES128. I claim that the weaknesses
in the AES256 key schedule don't matter in practice, so let's prefer
AES256. Though rational people might decide that we don't need so many
rounds, and a 256 bit key doesn't help. I think that the key length is
less important than any of the other issues.
I've written a python program to do the sorting for me, since there's a
bad track record for building these things by hand (#11498); attaching it
here.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/11513#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list