[tor-talk] time to disable 3DES?

grarpamp grarpamp at gmail.com
Mon Oct 7 20:49:35 UTC 2013

On Mon, Oct 7, 2013 at 3:58 PM, Lee <ler762 at gmail.com> wrote:
> Isn't it time to quit using DES?
> Finally gave TBB a try (version 2.3.25-13), seems to me that the
> firefox component needs a lot of hardening.
> https://www.mikestoolbox.org/

This may be a function of the crypto library on your box (if dynamic),
rather than the supplied firefox itself (which it would be if static).
I don't have TBB handy.

printf 'GET / HTTP/1.0\n\n' \
 | openssl_101e s_client -connect www.mikestoolbox.org:https -ign_eof

0.9.8x: DHE-RSA-AES256-SHA

And that particular toolbox doesn't seem to support certain suites, ie:
ECDHE-RSA-AES256-GCM-SHA384: handshake failure

> Client Cipher Suites:

3DES is probably not least of note as all posted were SHA1 or lesser.

More information about the tor-talk mailing list