search

cloudflare / sslconfig

Cloudflare's Internet facing SSL configuration
BSD 3-Clause "New" or "Revised" License
1.3k stars 132 forks source link

Why EECDH+3DES? #8

Closed vincentbernat closed 8 years ago

vincentbernat commented 9 years ago

EECDH+3DES expands to:

ECDHE-RSA-DES-CBC3-SHA  SSLv3 Kx=ECDH     Au=RSA  Enc=3DES(168) Mac=SHA1
ECDHE-ECDSA-DES-CBC3-SHA SSLv3 Kx=ECDH     Au=ECDSA Enc=3DES(168) Mac=SHA1

Is there browser not supporting AES but supporting ECDH key exchange?

It was added in https://github.com/cloudflare/sslconfig/commit/9d5369e6f31615df18f7d964137fca3b7573a432.

vkrasnov commented 8 years ago

Indeed we are seeing some ECDHE with 3DES.