Has the NSA cracked SSL yet?
>implying SSL isn't made by the NSA
>implying this was ever in doubt
Can't wait for your next thread.
>IS TOR SAFE????
>>57817570
Nice try, NSA-Pajeet
They've cracked 1024 DH keys.
You will have no idea what this means but it means that you shouldn't use anything less than 2048 DH.
>>57817583
It doesn't matter seeing as people still use AES.
>>57817642
SSL uses DH, genius.
Why would you use SSL anyway? use TLS
>>57817663
No shit. Learn to read.
>>57817672
This
SSL ils dead
Ivan already cracked ssl.
Try tls
Anyone who thinks SSL is broken is a fucking retard.
>>57818108
/sslstrip/
sure its not broken but its only a matter of time before somebody figures a way around hsts then ssl will be useless if someones wants it to be.
>>57818140
SSL stripping relies on the user not noticing that SSL is no longer present.
IE: They don't look to see if it's https, or for a lock icon.
>>57817499
SSL has been cracked for years. That's why we all went to TLS.
>>57817499
SSL / TSL doesn't matter when your software has to trust 3rd party companies which are releasing keys and giving free copies of private keys to everybody who pays / asks them nicely.
Security is a system and currently anything using keys you didn't generated yourself is to be considered broken. Also don't forget the fact your x86 backward compatible CPU has a backdoor and your router no matter how expensive has backdoor as well.
Having paranoia doesn't mean they aren't after you.