Apache configuration that avoids BEAST while giving perfect forward secrecy
Gmail has an excellent rating on SSL Labs' SSL Report. It isn't vulnerable
to BEAST attacks and it has perfect forward secrecy with nearly all
current browsers.
The best Apache 2 configuration I've been able to find so far avoids BEAST
attacks, but only supports Chrome and Safari perfect forward secrecy.
Somehow Gmail was able to support current versions of IE and Firefox as
well.
Though Gmail apparently doesn't use Apache 2, I was wondering if anyone
could present an Apache configuration that has as high a quality as
Gmail's.
No comments:
Post a Comment