Getting TLS secure: open about:config in Firefox, search for RC4, disable all of them and restart Firefox. Now the connection to Google+ is secured with AES. Need to further tweak - 128 bit is too short.
33 plus ones
Shared publicly•View activity
View 16 previous comments
- Is the same possible for Konqueror? Or is it not necessary?Sep 10, 2013
- I haven't figured out yet how to do it in KDE. Might be that my setup is broken or it's very well hidden.Sep 10, 2013
- Jannis+1Bruce Schneider said in 2009 in a comment on his blog:
" 'So if I read this right (haven't seen the paper yet), AES-128 is actually harder to break than AES-256 due to the nature of this attack?'
Yes and no. Neither can be broken. There are no attacks against any AES variants that are better than brute force; all of these attacks are against reduced-round variants.
That being said, the key schedule for AES-256 is very poor. I would recommend that people use AES-128 and not AES-256."
So we might just use AES-128 and hope they don't have the computation power to brute force it.Sep 10, 2013
- The question is: Is Bruce Schneier trustworthy?Sep 10, 2013
- if one does, one can use Twofish instead of RijndaelSep 10, 2013
- If you disable security.ssl3.rsa_rc4_128_sha , youtube videos don't work.Mar 15, 2014