[HCoop-Discuss] TLS Perfect Forward Secrecy etc.
Daniil Frumin
difrumin at gmail.com
Fri Apr 11 16:56:10 EDT 2014
I am not entierly sure, but I think Clinton is already working on that :)
Either a properly signed cert will be obtained, or the join page will
be moved to the main domain. I think that was the plan.
On Sat, Apr 12, 2014 at 12:35 AM, Sajith T S <sajith at hcoop.net> wrote:
> Greetings,
>
> It's quite comforting to know that HCoop has remained immune to the
> latest internet catastrophe simply by running the stablest Debian. :)
> Yay us!
>
> The EFF are advising HTTPS sites to implement forward secrecy as a
> measure to mitigate the next Heartbleed if/when it happens. How about
> HCoop? Is it possible to enable this today without breaking a bunch
> of other stuff?
>
> Also, this report doesn't look pretty:
>
> https://www.ssllabs.com/ssltest/analyze.html?d=hcoop.net
>
> Speaking of which, I remember there being talks about HCoop getting a
> "properly" signed wildcard certificate, or perhaps becoming a signing
> authority by itself. I can't find the relevant thread, but I was
> wondering if it's still in the plan, and if it's a thing that can be
> done without breaking Clinton's back and breaking the bank, etc.
>
> Regards,
> Sajith.
>
> --
> "the lyf so short, the craft so long to lerne."
> -- Chaucer.
>
>
> _______________________________________________
> HCoop-Discuss mailing list
> HCoop-Discuss at lists.hcoop.net
> https://lists.hcoop.net/listinfo/hcoop-discuss
--
Sincerely yours,
-- Daniil
More information about the HCoop-Discuss
mailing list