Re: Is it okay to not use exportable ciphers?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 


On Aug 20, 2009, at 3:16 PM, Brian Mearns wrote:


For the sake of security, I'd like to configure my SSL/TLS server to
not allow export level ciphers (using the SSLCipherSuite directive).
Is this going to realistically limit the number of people who can use
a secure connection to my site? Specifically, will visitors from other
countries (outside the US) be able to support the stronger
(non-exportable) ciphers?
You can configure a logfile to record what ciphers your users are currently using, and draw conclusions from that. 

S.

--
Sander Temme
sctemme@xxxxxxxxxx
PGP FP: 51B4 8727 466A 0BC3 69F4  B7B8 B2BE BC40 1529 24AF

Attachment: smime.p7s
Description: S/MIME cryptographic signature

[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux