Re: explicitly including other ciphers for use with https

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: users@xxxxxxxxxxxxxxxx
Subject: Re: explicitly including other ciphers for use with https
From: William A Rowe Jr <wrowe@xxxxxxxxxxxxx>
Date: Mon, 7 Dec 2015 23:54:56 -0600
In-reply-to: <56666C30.8060501@rqc.ru>
Reply-to: users@xxxxxxxxxxxxxxxx

On Dec 7, 2015 11:36 PM, "Marat Khalili" <mkh@xxxxxx> wrote:
>>
>> Everything *after* that handshake, in cleartext, is open for inspection or for manipulation
>
> Are you sure about the manipulation part? Why do you think encryption helps here then?

To turn the question around, what gives you the suggestion that the user agent or the httpd server would notice any modification of plaintext bytes in transit through a router or other network intermediate?

Follow-Ups:
- Re: explicitly including other ciphers for use with https
  - From: Jacob Champion
- Re: explicitly including other ciphers for use with https
  - From: Marat Khalili

References:
- explicitly including other ciphers for use with https
  - From: Ron Croonenberg
- Re: explicitly including other ciphers for use with https
  - From: William A Rowe Jr
- Re: explicitly including other ciphers for use with https
  - From: Jacob Champion
- Re: explicitly including other ciphers for use with https
  - From: William A Rowe Jr
- Re: explicitly including other ciphers for use with https
  - From: Marat Khalili

Prev by Date: Re: explicitly including other ciphers for use with https
Next by Date: Re: explicitly including other ciphers for use with https
Previous by thread: Re: explicitly including other ciphers for use with https
Next by thread: Re: explicitly including other ciphers for use with https
Index(es):
- Date
- Thread

[Index of Archives] [Open SSH Users] [Linux ACPI] [Linux Kernel] [Linux Laptop] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Squid] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper]