Looks like @stripe still has SSLv3 on, and RC4 preferred for some clients. How long is this 'compatibility' needed?https://github.com/isvsecwatch/httpstracker/issues/30 …
@isvsecwatch We're looking into this and will let you know how it goes on GitHub.
-
-
Oh, look,
@stripe is still sticking with SSLv3, even though their docs say they don't. And RC4, because Google. https://www.ssllabs.com/ssltest/analyze.html?d=api.stripe.com … -
Except that Google has committed to phasing it out, which kind of leaves
@stripe without their 'Google does it!' excuse, hmm? - 6 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.