|
Title: NSA bypass HTTPS and SSL Post by: imrer on September 06, 2013, 11:40:50 AM What do you think about this article?
http://www.theguardian.com/world/2013/sep/05/nsa-gchq-encryption-codes-security (http://www.theguardian.com/world/2013/sep/05/nsa-gchq-encryption-codes-security) Title: Re: NSA bypass HTTPS and SSL Post by: antiycda on September 06, 2013, 11:42:30 AM SSL is not safe anymore
Title: Re: NSA bypass HTTPS and SSL Post by: LiteCoinGuy on September 06, 2013, 12:59:59 PM also:
A theft of SSL certificates raises doubt about Internet security http://english.netmassimo.com/2011/09/06/a-theft-of-ssl-certificates-raises-doubt-about-internet-security/ Title: Re: NSA bypass HTTPS and SSL Post by: yaffare on September 06, 2013, 02:38:29 PM this means that bitcoin will be dead by the end of the year. you should sell all coins now.
Title: Re: NSA bypass HTTPS and SSL Post by: Phinnaeus Gage on September 06, 2013, 03:02:17 PM Quote An internal agency memo noted that among British analysts shown a presentation on the NSA's progress: "Those not already briefed were gobsmacked!" Those British analysts really dig deep when they head on out to do their analysing. As shown above, they've uncovered (no pun intended, as you'll see if a bit) the NSA gobsmacking (whatever that means, but it sounds like fun) individuals sans underwear. On second thought, I don't think I would want anybody gobsmacking me donning or sans briefs or boxers. Title: Re: NSA bypass HTTPS and SSL Post by: imrer on September 06, 2013, 06:03:41 PM What are alternatives to these protocol?
I still don't understand why people think, that by spying on somebody will bring them better progress in anything. Title: Re: NSA bypass HTTPS and SSL Post by: KonstantinosM on September 07, 2013, 02:59:20 PM Well, time for more TOR like things to spring up!
Title: Re: NSA bypass HTTPS and SSL Post by: freigeist on September 20, 2013, 12:26:52 PM try to use this to make them work more!
http://flagger.io/ http://www.youtube.com/watch?v=Ta07GUynRwQ ;) Title: Re: NSA bypass HTTPS and SSL Post by: b!z on September 20, 2013, 12:27:35 PM use your own self-issued ssl certs, problem solved :-)
Title: Re: NSA bypass HTTPS and SSL Post by: 🏰 TradeFortress 🏰 on September 20, 2013, 12:32:35 PM SSL is safe if you do it right - strong cipher + PFS + certificate pinning.
Title: Re: NSA bypass HTTPS and SSL Post by: greyhawk on September 20, 2013, 12:38:27 PM SSL is safe if you do it right - strong cipher + PFS + certificate pinning. Not anymore it's not. RSA has warned today against using RSA encryption because the NSA apparently compromised the RNGs. Title: Re: NSA bypass HTTPS and SSL Post by: bitcoindigi on September 20, 2013, 02:02:29 PM so what's the alternative to SSL and why doesn't bitcointalk use it already?
Title: Re: NSA bypass HTTPS and SSL Post by: greyhawk on September 20, 2013, 02:10:06 PM so what's the alternative to SSL and why doesn't bitcointalk use it already? Bitcointalk hasn't even implemented it's certificates correctly after - what? 4 years? 5? Title: Re: NSA bypass HTTPS and SSL Post by: polarhei on September 21, 2013, 03:18:08 PM SSL is not safe anymore Nothing is safe. I remember one thing. increasing the length, with complex combination, which can slow down the attack. Also, limit the ports as The first door broken but not the second one. Title: Re: NSA bypass HTTPS and SSL Post by: polarhei on September 21, 2013, 03:28:59 PM use your own self-issued ssl certs, problem solved :-) This is one of the option, but the length should get longer to increase the worst processing time. Nothing can be fully blocked. Even the two-door safe. It is just time matters. |