Au contraire: I think WMF has a responsibility to ensure the safety and security of its editors, who might be working on topics controversial in their home regions. --scott On Jul 29, 2013 9:36 PM, "Tyler Romeo" tylerromeo@gmail.com wrote:
Yeah, I think MediaWiki has much more important security issues to worry about than their TLS configurations. :P
*-- * *Tyler Romeo* Stevens Institute of Technology, Class of 2016 Major in Computer Science www.whizkidztech.com | tylerromeo@gmail.com
On Mon, Jul 29, 2013 at 9:34 PM, Chad innocentkiller@gmail.com wrote:
On Mon, Jul 29, 2013 at 2:03 PM, Thomas Gries mail@tgries.de wrote:
Am 29.07.2013 21:31, schrieb Ryan Lane:
That ssllabs link also shows that wikimedia has RC4 encryption
enabled
on SSL connections, which offers no real security. This is
apparently
related to the TLS 1.0 -vs- TLS 1.1/1.2 issue:
https://community.qualys.com/blogs/securitylabs/2013/03/19/rc4-in-tls-is-bro...
--scott
Ryan:
check with https://www.ssllabs.com/ssltest/
Example for https://en.wikipedia.org https://www.ssllabs.com/ssltest/analyze.html?d=en.wikipedia.org
We do better than the check site itself ;-)
https://www.ssllabs.com/ssltest/analyze.html?d=ssllabs.com
-Chad _______________________________________________ Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l