Heatbleed leaking private keys means a cert issued before April 7 on a site without PFS can't be trusted.
@brutasse I mean, people can't decrypt your old traffic, but that doesn't help with future MITM efforts
-
-
Correction: PFS isn't enough. New certs or GTFO :) /thanks
@delroth_ -
@brutasse I was inclined to disagree with you, but less so after http://blog.cloudflare.com/the-results-of-the-cloudflare-challenge … - 1 more reply
New conversation -
-
-
@delroth_ ugh, I guess so.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.