Current Callimachus sites using TLS/SSL fail the Qualys checker for Diffie-Helman key exchange security.
Callimachus needs to disable support for export cipher suites and generate a unique 2048-bit Diffie-Hellman group in accordance with https://weakdh.org/sysadmin.html
Current Callimachus sites using TLS/SSL fail the Qualys checker for Diffie-Helman key exchange security.
Callimachus needs to disable support for export cipher suites and generate a unique 2048-bit Diffie-Hellman group in accordance with https://weakdh.org/sysadmin.html
See, for example, the report for a Callimachus site: https://www.ssllabs.com/ssltest/analyze.html?d=usepa.3roundstones.net&latest