summaryrefslogtreecommitdiffstats
path: root/Server_Side_TLS.mediawiki
Commit message (Collapse)AuthorAgeFilesLines
* Merge pull request #165 from mozilla/jvehent-patch-1HEADorigin/gh-pagesorigin/HEADgh-pagesJulien Vehent [:ulfr]2016-10-311-21/+54
|\ | | | | v4.1: Clarify Logjam notes, Clarify risk of TLS Tickets
| * Address review commentsorigin/jvehent-patch-1Julien Vehent2016-10-311-5/+5
| |
| * Recommend RFC7919 pre-defined groups, clarify TLS ticketsJulien Vehent [:ulfr]2016-10-051-15/+47
| |
| * v4.1: Clarify Logjam notes, Clarify risk of TLS TicketsJulien Vehent [:ulfr]2016-09-301-10/+11
| | | | | | r? @ekr @marumari
* | Update Server_Side_TLS.mediawikiMichaelPaoli2016-10-291-1/+1
|/ | | followed but --> followed by - hopefully corrected what appeared to be an English misuse or typo
* make the intro section look a lot neater by removing mozilla logo and ↵April King2016-08-041-2/+1
| | | | shrinking generator image
* fixes typobndw2016-08-011-1/+1
|
* Provide latest json configurationJulien Vehent2016-02-231-1/+3
|
* Publish link to JSON version of guidelinesJulien Vehent2016-02-131-0/+12
|
* Update oldest clients in modern configurationJulien Vehent [:ulfr]2016-02-111-2/+2
|
* Update Server_Side_TLS.mediawikiJulien Vehent [:ulfr]2016-02-111-3/+2
|
* Add image to configuration generator at top of pageJulien Vehent [:ulfr]2016-02-111-2/+2
|
* Update ciphersuites table using @marumari's scriptJulien Vehent2016-02-111-946/+946
|
* Fix typos in wiki pageorigin/4.0Julien Vehent [:ulfr]2016-02-111-2/+2
|
* V4: updated ciphersuites, publish guidelines as JSONJulien Vehent2016-02-111-1709/+1128
| | | | | | | | | | | | | | | | | | | | | | | | | This commit is the result of several months of discussions and maturation. It represents the state of the art in TLS configurations. It has been rebased, but the history is shown below and can be read at: https://github.com/mozilla/server-side-tls/pull/97 - V4: updated levels, added JSON - Remove DHE from modern, add ChaCha20 - prefer aes256 in modern, add ecdh size parameter - Remove TLSv1.1 from modern level - Prefer AES256-GCM to ChaCha20 in modern configuration - Recommend ECDSAWithSHA384 as cert signature in modern conf - Remove unused document signature - Change recommended curve in Modern to P256 - Convert certificate types, curves and signatures to lists to support multiple acceptable values - readd EDH-RSA-DES-CBC3-SHA to intermediate and old - Add DHE-RSA-AES256-GCM-SHA384 to intermediate level - rename json keys - Revisit old ciphersuites - Update wiki document with latest recommendations and rationales - Add paragraph on certificates switching - Remove configuration samples & cleanup some stuff - reset changes to conf generator
* Bump version 3.9Julien Vehent [:ulfr]2016-01-051-0/+4
|
* Add EDH-RSA-DES-CBC3-SHA to old and intermediate confsJulien Vehent [:ulfr]2016-01-051-44/+92
|
* Typo in RC4 weaknesses, fixes #83Julien Vehent2015-11-181-1/+1
|
* Merge pull request #84 from malcolmr/patch-1Julien Vehent2015-11-021-2/+0
|\ | | | | Remove a dead in-page link for Nginx
| * Remove a dead in-page link for NginxMalcolm Rowe2015-08-161-2/+0
| | | | | | | | The additional information for Nginx was removed in https://wiki.mozilla.org/index.php?title=Security/Server_Side_TLS&diff=990137&oldid=983316.
* | 15724800 -> 15768000, to bring inline with generator (182 versus 182.5 days)April King2015-09-231-3/+3
| |
* | Minor fix to 3.8 to improve TOC readability on small screensApril King2015-08-281-2/+3
| |
* | Fix minor error in version chartApril King2015-08-281-1/+0
| |
* | Redo the cipher names tableApril King2015-08-281-1394/+1750
| |
* | Add ECDHE-3DES ciphers to intermediate levelJulien Vehent2015-08-281-1/+1
| |
* | Fix an absolute ton of screwed up wikilinksApril King2015-08-271-13/+13
| |
* | remove the 3.8 section for nowApril King2015-08-271-4/+0
| |
* | Moved the version table to the bottom, fixed duplicate __TOC__, cleanup in ↵April King2015-08-271-126/+128
|/ | | | sections to minimize TOC size
* Merge pull request #76 from drwetter/gh-pagesJulien Vehent2015-07-161-6/+6
|\ | | | | Typos (links)
| * External linksDirk Wetter2015-06-221-5/+5
| | | | | | Typos / Syntax was for internal links (MediaWiki)
| * Typos (links)Dirk Wetter2015-06-221-1/+1
| |
* | fixin' typosApril King2015-06-231-2/+2
|/
* publish v3.7Julien Vehent2015-06-191-2/+6
|
* Merge pull request #73 from marumari/gh-pagesJulien Vehent2015-06-191-23/+88
|\ | | | | Change version history to proper table
| * Change version history to proper tableApril King2015-06-101-23/+88
| |
* | Merge pull request #70 from rgacogne/gh-pagesJulien Vehent2015-06-191-1/+26
|\ \ | | | | | | add notes about pre-defined DH groups, DHE support in clients
| * | add a note about pre-defined DH groups, and another about DHE/ECHDE support ↵Remi Gacogne2015-06-161-1/+26
| |/ | | | | | | in clients (taking into account Julien Vehent's comments)
* | Update Server_Side_TLS.mediawikiDavid Warburton2015-06-181-0/+119
|/ | | New branch (I think) with all the requested changes.
* Change Golang orderingorigin/gdestuynder-patch-1Guillaume Destuynder2015-06-011-3/+3
| | | ECDSA on top, and AES128 before AES256 as per https://wiki.mozilla.org/Security/Server_Side_TLS#Prioritization_logic (4)
* intermediate dhe to 2048, note about javaJulien Vehent2015-05-271-3/+26
|
* add note about 2048 DHE in intermediate ciphersuiteJulien Vehent2015-05-271-1/+1
|
* update phrasing on weakdh issueJulien Vehent2015-05-201-2/+3
|
* fix markup issueAaron Meihm2015-05-201-1/+1
|
* add note about Logjam attackAaron Meihm2015-05-201-0/+6
|
* Add note about update doc and conf generator location. fixes #63.Julien Vehent2015-05-201-0/+4
|
* Add source of wiki page in reposJulien Vehent2015-05-201-0/+2832
generated by cgit v1.1 at 2025-05-10 22:49:17 +0000