Stories
Slash Boxes
Comments

SoylentNews is people

Meta
posted by on Wednesday November 13 2019, @11:10PM   Printer-friendly [Skip to comment(s)]
from the lingere dept.

Just a quick note to let those of you who care know that our load balancer finally got bumped up to openssl 1.1.x and is now TLSv1.3 happy. For those of you who are especially paranoid, "ssl_early_data" is explicitly set to "off" in the nginx conf file, actively disabling 0-RTT, even though it's disabled by default.

That's all, carry on.

This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
(1)
  • (Score: 0) by Anonymous Coward on Wednesday November 13 2019, @11:16PM (2 children)

    by Anonymous Coward on Wednesday November 13 2019, @11:16PM (#920058)

    Would setting "ssl_early_data" have made #CrookedHillary president?

    • (Score: 5, Funny) by The Mighty Buzzard on Wednesday November 13 2019, @11:25PM (1 child)

      by The Mighty Buzzard (18) Subscriber Badge <themightybuzzard@soylentnews.org> on Wednesday November 13 2019, @11:25PM (#920064) Homepage Journal

      No, it would have made Ethanol-fueled chief editor though.

      --
      My rights don't end where your fear begins.
      • (Score: 1, Funny) by Anonymous Coward on Wednesday November 13 2019, @11:39PM

        by Anonymous Coward on Wednesday November 13 2019, @11:39PM (#920068)

        What could possibly go wrong with that?

  • (Score: 2) by coolgopher on Thursday November 14 2019, @12:13AM (7 children)

    by coolgopher (1157) Subscriber Badge on Thursday November 14 2019, @12:13AM (#920080)

    For those of you who are especially paranoid, "ssl_early_data" is explicitly set to "off" in the nginx conf file

    Suuuure, that's what someone would say if they wanted to lull us into a false of security. There is no proof of this!

  • (Score: 3, Insightful) by Anonymous Coward on Thursday November 14 2019, @12:19AM

    by Anonymous Coward on Thursday November 14 2019, @12:19AM (#920083)

    The work you guys put in is greatly appreciated, even by us ACs!

  • (Score: 2, Informative) by Anonymous Coward on Thursday November 14 2019, @01:52AM (4 children)

    by Anonymous Coward on Thursday November 14 2019, @01:52AM (#920145)

    Great, now my old Seamonkey browser won't connect. Oddly, despite all the hype, a lot of sites still connect with older TLS (but usually look like crap - well, they look like crap in new browsers too). At least it should work in Retrozilla, but have been dragging my feet on setting that up.

    • (Score: 0) by Anonymous Coward on Thursday November 14 2019, @02:55AM (1 child)

      by Anonymous Coward on Thursday November 14 2019, @02:55AM (#920167)

      SSL? How old is that SeaMonkey client? Even they disabled SSL by default back in 2014. Additionally, TLS 1.2 appears to have been supported from before that by at least 3 years. I definitely wouldn't recommend browsing random websites on something that old.

      • (Score: 3, Funny) by maxwell demon on Thursday November 14 2019, @08:14AM

        by maxwell demon (1608) on Thursday November 14 2019, @08:14AM (#920255) Journal

        So you say it's time to retire my trusty old Mosaic browser? ;-)

        --
        The Tao of math: The numbers you can count are not the real numbers.
    • (Score: 2) by SomeGuy on Saturday November 16 2019, @12:26AM (1 child)

      by SomeGuy (5632) on Saturday November 16 2019, @12:26AM (#920840)

      It appears that since this story, someone has kindly re-enabled backwards compatiblity.

      • (Score: 0) by Anonymous Coward on Saturday November 16 2019, @08:37PM

        by Anonymous Coward on Saturday November 16 2019, @08:37PM (#921071)

        The SSL Labs website says that the SN server now has TLS 1.0 enabled.

  • (Score: 4, Informative) by maxwell demon on Thursday November 14 2019, @09:08AM (3 children)

    by maxwell demon (1608) on Thursday November 14 2019, @09:08AM (#920266) Journal

    Off-topic, but I wouldn't know a better place where to put it:

    There's something wrong with the funding progress bar. The funding is slightly above 75%, but the green area is far from covering that much.

    --
    The Tao of math: The numbers you can count are not the real numbers.
    • (Score: 4, Funny) by martyb on Thursday November 14 2019, @09:51AM (2 children)

      by martyb (76) Subscriber Badge on Thursday November 14 2019, @09:51AM (#920275) Journal

      Off-topic, but I wouldn't know a better place where to put it:

      There's something wrong with the funding progress bar. The funding is slightly above 75%, but the green area is far from covering that much.

      Huh?

      /me reloads main page, squints, nods head. Huh!

      /me opens template, replaces missing "%", saves.

      /me begins whistling as if nothing happened. =)

      But seriously, that was a great catch and thanks for bringing it to our attention!

      --martyb

      --
      Wit is intellect, dancing.
      • (Score: 2) by maxwell demon on Thursday November 14 2019, @11:10AM (1 child)

        by maxwell demon (1608) on Thursday November 14 2019, @11:10AM (#920286) Journal

        Thank you, too (also for the message in my SN inbox).

        Sending mail to soylentnews.org addresses seems not to work with my mail provider (no idea why; the only response I got is “processing error”).

        --
        The Tao of math: The numbers you can count are not the real numbers.
(1)