[Pidgin] #16262: Enabled ciphers in NSS unnecessarily limited

Pidgin trac at pidgin.im
Wed Nov 5 00:13:04 EST 2014


#16262: Enabled ciphers in NSS unnecessarily limited
-----------------------+------------------------
 Reporter:  asjoegren  |       Owner:  EionRobb
     Type:  defect     |      Status:  closed
Milestone:  2.10.11    |   Component:  libpurple
  Version:  2.10.10    |  Resolution:  fixed
 Keywords:  ssl nss    |
-----------------------+------------------------
Changes (by Daniel Atallah <datallah@…>):

 * status:  new => closed
 * resolution:   => fixed
 * milestone:   => 2.10.11


Comment:

 (In [f26d96f03176]):[[BR]]
 Update NSS Default Cipher suites

  * Use Firefox as a base reference, include some previously used stuff and
 enable various PFS certificates
  * The following certificates were previously enabled (when using NSS
 3.17.1)
    and are no longer enabled:
   * Various using RC2 and MD5
   * TLS_DHE_DSS_WITH_AES_256_CBC_SHA
   * TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
   * TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
   * TLS_DHE_DSS_WITH_RC4_128_SHA
   * TLS_RSA_WITH_3DES_EDE_CBC_SHA
   * TLS_RSA_WITH_RC4_128_SHA (this is probably the most controversial
 removal)
   * TLS_RSA_WITH_RC4_128_MD5
   * TLS_DHE_RSA_WITH_DES_CBC_SHA
   * TLS_DHE_DSS_WITH_DES_CBC_SHA

 Refs #8062, Fixes #16262

--
Ticket URL: <https://developer.pidgin.im/ticket/16262#comment:18>
Pidgin <https://pidgin.im>
Pidgin


More information about the Tracker mailing list