[Operators] Please enable Forward Secrecy for your servers!

Skhaen skhaen at libwalk.so
Fri Jul 10 22:05:51 UTC 2015


Already done on 3 servers a few months ago. :]

Skhaen

Le 10/07/2015 18:32, Vincent Lauton a écrit :
> Already done,got robust forward secrecy.
> 
> 14:50, 10 juillet 2015, Arsimael Inshan <ai at jhml.de>:
> 
>     Allready done. Can someone check if its working? Server's is-a-furry.org
> 
>     Sorry for keeping it short - Sent from a mobile device
> 
>     Arsimael Inshan
>     IT-Engineer
> 
>     Phone: +49 152 0193 5142
>     email: ai at jhml.de
>     Web: https://www.it-native.de (german)
> 
>     This e-mail may contain confidential and/or privileged Informations.
>     If you are not the intended recipient, please immediately inform
>     thesender and delete this mail. Any unauthorized copying, disclosure
>     ordistribution of this Mail is not allowed.
> 
>     Von: Mike Barnes
>     Gesendet: ‎10.‎07.‎2015 13:14
>     An: XMPP Operators Group
>     Betreff: Re: [Operators] Please enable Forward Secrecy for your servers!
> 
> 
>     Do you have any details on which client software and versions you've
>     tested, Mathias? I've been looking at doing this but I've been more
>     concerned about the client experience than s2s issues.
> 
>     You say "very few" users had issues - what was your sample size? It's
>     really hard to get in touch with a user if you stop their connection
>     from working, so I'd be really hesitant to jump into something like
>     this without a lot of warning and publishing required minimum version
>     information somewhere for them.
> 
>     On 10 July 2015 at 20:07, Peter Schwindt <operators at schwindt-net.de>
>     wrote:
>     > Dear *,
>     >
>     > On 07/10/2015 11:47 AM, Mathias Ertl wrote:
>     >
>     >> We at jabber.at would like to announce that we will exclusively
>     support
>     >> forward secrecy[1] enabled ciphers starting *October 1st, 2015*.
>     Servers
>     >> that do not support any of those ciphers by then, will not be able to
>     >> federate with us until they upgrade.
>     >
>     > Thanks, Mathias, for rising this issue.
>     >
>     > We're going that mentioned way on jabber.ccc.de, too - but might start
>     > even earlier. So be warned :)
>     >
>     >
>     > Greetings,
>     > Peter
> 
> 
> 
> -- 
> Sent from Yandex.Mail for mobile


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: OpenPGP digital signature
URL: <http://mail.jabber.org/pipermail/operators/attachments/20150711/f2ac8932/attachment.sig>


More information about the Operators mailing list