Mozilla created an extensive page [7] concerning the best current choice of SSL/TLS cipher suites, primarily¬†for web servers. Compass Security agrees broadly with the article, but recommends some additional restrictions in order to provide the most resistance against active and passive attacks versus TLS secured connections: Use 3DES cipher instead of RC4 Disable SSLv3 support […]

Continue reading