I think using Mozilla's "Modern cipher suite" list should do it, and it seems to... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		higherpurpose on March 4, 2015 \| parent \| context \| favorite \| on: The Freak Attack SSL/TLS Vulnerability I think using Mozilla's "Modern cipher suite" list should do it, and it seems to be all forward secure: https://wiki.mozilla.org/Security/Server_Side_TLS#Modern_com...

tombrossman on March 4, 2015 [–]

What prevents me from using 'Modern' is it requires Android 4.4+, which excludes a hell of a lot of mobile users. I'm okay with dropping XP support but dropping Android 4.3 and earlier is too limiting for me.

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact