Logjam | search
Click here to view Logjam news from 60+ newspapers.
Bookmark or Share- tls - What is Logjam and how do I prevent it? - Information Security ...Logjam is a cipher downgrade attack where a man in the middle can trick the end points into using a weak cipher. A weak cipher would allow the man in the middle to easily decrypt intercepted traffic. As with all other cipher downgrade attacks the best way to prevent it is to disable weak ciphers in the first place.
- diffie hellman - Cipher suites vulnerable to logjam - Information ...Thanks for the reply, DH export cipher is vulnerable to logjam attack, but the list its being hard to find which are all DH export cipher – Prem M Commented Jun 10, 2015 at 3:43
- LogJam hardening OpenSSH and testing it [duplicate]If it's something that starts with ecdsa-then you're safe from LogJam. Otherwise you'll have to have to count bytes again. And there'll have to be at least 256. (256 x 8 bits == 2048 bits. Which is what we want as a minimum key length.) Further reading: Jethro Beekman, 2015-05-20, On OpenSSH and Logjam (Archived here.)
- tls - How to check if a server is not vulnerable to Logjam ...(If the connections fails straight away, then the server does not support ephemeral Diffie-Hellman ("EDH" in OpenSSL-speak, "DHE" elsewhere) at all and you're safe from Logjam.) [...] Finally, verify that export ciphers are disabled: $ openssl s_client -connect www.example.com:443 -cipher "EXP" The connection should fail. In other words:
- tls - Securing Google Chrome Browser against the Logjam exploit on ...In answer to your second question, for logjam to work, both the client AND the server have to support the old "export 512 bit DH connections". This is fixed by simply re-configuring the webserver to exclude these legacy cipher suites.
More
