@headius looks like D-H changes to the @rubygems external ciphersuite just broke http://rubygems.org for all JRuby users o_O
-
-
-
Replying to @tqbf2 replies 1 retweet 2 likes
-
Replying to @matthew_d_green
@matthew_d_green@bascule The ones where there isn’t an easy-to-implement ladder alg to avoid timing, or for which points have to be checked1 reply 1 retweet 2 likes -
Replying to @tqbf
@tqbf@matthew_d_green so basically anything that's presently available in TLS? ;)2 replies 0 retweets 0 likes -
Replying to @bascule
@bascule@matthew_d_green I’m saying if you’re doing custom proto w/ choice between p256 and DH-2048, do DH.1 reply 0 retweets 0 likes -
Replying to @tqbf
@tqbf@matthew_d_green I just want JRuby/JVM to be able to talk to http://rubygems.org over TLS1 reply 0 retweets 0 likes -
Replying to @bascule
@bascule@matthew_d_green Right, I just saw “Diffie Hellman considered harmful” and had just recently thought about that question.1 reply 0 retweets 0 likes
@tqbf @matthew_d_green with Curve25519 and Ed448-Goldilocks as the CFRG curves, hopefully things will get better soon...
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.