[jdev] SSL/TLS versions

Simon Tennant simon at buddycloud.com
Fri Nov 15 08:54:01 UTC 2013


Are we talking about c2s, s2s or both?

I'm loving watching the results on http://xmpp.net/list.php and noticing
sites improving their security.

What I'd still like is a rolling security average. Something like

- average result in last 24 hours, 7 days, 30 days, year. (/me goes to log
a feature request).

S.



On 15 November 2013 03:33, Peter Saint-Andre <stpeter at stpeter.im> wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Matthew Wild has run some analytics on SSL/TLS versions negotiated
> over a period of time at the jabber.org XMPP service. The percentages
> were roughly as follows:
>
> TLS 1.0 72%
> TLS 1.2 21%
> TLS 1.1  4%
> SSLv3    3%
>
> Two points:
>
> 1. I'm disappointed that TLS 1.2 is still only ~20%. But that might be
> driven by operating systems, not XMPP clients.
>
> 2. I wonder if some XMPP clients still cannot do TLS and therefore use
> SSLv3 instead. Or is that too driven by operating systems?
>
> Peter
>
> - --
> Peter Saint-Andre
> https://stpeter.im/
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG/MacGPG2 v2.0.19 (Darwin)
> Comment: GPGTools - http://gpgtools.org
> Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
>
> iQIcBAEBAgAGBQJShYfuAAoJEOoGpJErxa2pWh4QAJdScDfG4DfOL0eVq8J0czAG
> XKBRCIf4XFGrr81FAdBgSBWTlzRJQe996SUtJxHKyOlPS1BAoVk0bwBf7nIOHBgI
> ydA8zuqcy0WcNk3xri6UnjMawAmIiN5qgp5EI733ioX6LP05tbkuV9Ft0d93atfV
> s3iD5xFvoIvnx536l1nSVDW8G+t3tBH3THReWohmqjh6s3vmLyJSgBSahOxlkQbQ
> anYbQCCewIcshX0HClZnaHdskYsvc2GmAV5tUJXTZTB+j3tY3fleqjjp9quuw5i+
> ei1sA609I7tFDmAhhDLIzrP75Ltn5w4DG/zOWs5YdGAGk0X8RnGLPTW7jyGQNdIv
> c09KgN4N+z8g7mxBHvnUNvHdet0lRvfDt3oIEuEVOfecO3zCYGpjLj7Uo7H5KFlp
> xKsIqyrbp1lW9zZXFRX/Nb1GxaH1jNVaMwVJfOj0OTz3x+s5yarmy4Atd24I9vlv
> 0DmuSJYOEs7GLdBMwaDAnolRaaXKjYqd3X8u5VCJfy3xq6LIFLVVAAo+4BXU5Wo+
> oMtvt1kYyrIGR5vPXfj4ElBFgQ/oYfO6n8pXBsZClNi5zYJ2mxtQfsaLQ4PnjMnp
> a1GQJktkKSTJ1oFhKS09S5C6SVUd8sy41MwE2pXL+KLny8n2GHiHnjVi4NRFz66w
> TxRvUb9eT86eYYUaj1N7
> =EfuX
> -----END PGP SIGNATURE-----
> _______________________________________________
> JDev mailing list
> Info: http://mail.jabber.org/mailman/listinfo/jdev
> Unsubscribe: JDev-unsubscribe at jabber.org
> _______________________________________________
>



-- 
Simon Tennant | buddycloud.com | +49 17 8545 0880 | office hours:
goo.gl/tQgxP
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.jabber.org/pipermail/jdev/attachments/20131115/97aa17f8/attachment.html>


More information about the JDev mailing list