AaronK [Tue, 28 Oct 2014 22:57:00 +0000 (23:57 +0100)]
Merge pull request #79 from stasic/patch-2
added freebsd 10
Thx Arsen!
Arsen Stasic [Tue, 28 Oct 2014 21:23:21 +0000 (22:23 +0100)]
added freebsd 10
added ssh signature for freebsd 10
David Durvaux [Wed, 22 Oct 2014 07:37:15 +0000 (09:37 +0200)]
Change email address
Aaron Zauner [Tue, 21 Oct 2014 08:10:35 +0000 (10:10 +0200)]
add all the things
Aaron Zauner [Tue, 21 Oct 2014 07:57:01 +0000 (09:57 +0200)]
add summary paper on curves progress within CFRG
Aaron Zauner [Tue, 21 Oct 2014 07:55:01 +0000 (09:55 +0200)]
add slides on IETF
Aaron Kaplan [Mon, 20 Oct 2014 22:26:48 +0000 (00:26 +0200)]
still minor modifications
Aaron Kaplan [Mon, 20 Oct 2014 22:12:36 +0000 (00:12 +0200)]
replace medical-test.jpg picture :)
minor changes to the text
Aaron Kaplan [Mon, 20 Oct 2014 21:59:56 +0000 (23:59 +0200)]
okay, I think we are ready for the presentation tomorrow
Aaron Kaplan [Mon, 20 Oct 2014 21:52:30 +0000 (23:52 +0200)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
Aaron Kaplan [Mon, 20 Oct 2014 21:52:15 +0000 (23:52 +0200)]
restructure, last slides
Aaron Zauner [Mon, 20 Oct 2014 21:48:26 +0000 (23:48 +0200)]
finish attacks part
Aaron Kaplan [Mon, 20 Oct 2014 21:12:23 +0000 (23:12 +0200)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
Aaron Kaplan [Mon, 20 Oct 2014 21:12:06 +0000 (23:12 +0200)]
more images
Aaron Kaplan [Mon, 20 Oct 2014 21:11:35 +0000 (23:11 +0200)]
more slides
Aaron Zauner [Mon, 20 Oct 2014 21:02:50 +0000 (23:02 +0200)]
get rid of company logo
Aaron Zauner [Mon, 20 Oct 2014 20:54:17 +0000 (22:54 +0200)]
add slides for attacks (seperate)
Aaron Kaplan [Mon, 20 Oct 2014 20:39:50 +0000 (22:39 +0200)]
does not work... remove \input
Aaron Kaplan [Mon, 20 Oct 2014 20:38:13 +0000 (22:38 +0200)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
Aaron Kaplan [Mon, 20 Oct 2014 20:37:56 +0000 (22:37 +0200)]
add more slides
Aaron Zauner [Mon, 20 Oct 2014 20:33:32 +0000 (22:33 +0200)]
include attack.tex in agenda.md
Aaron Kaplan [Mon, 20 Oct 2014 20:30:07 +0000 (22:30 +0200)]
add images
Aaron Kaplan [Mon, 20 Oct 2014 20:29:36 +0000 (22:29 +0200)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
Conflicts:
presentations/HACK.LU-2014/presentation/agenda.md
Aaron Kaplan [Mon, 20 Oct 2014 20:28:04 +0000 (22:28 +0200)]
merge in David's changes and adapt
Aaron Zauner [Mon, 20 Oct 2014 20:27:11 +0000 (22:27 +0200)]
add attacks.tex (still issues with compiling that though)
Aaron Zauner [Mon, 20 Oct 2014 20:26:53 +0000 (22:26 +0200)]
add attacks.tex (still issues with compiling that though)
David Durvaux [Mon, 20 Oct 2014 20:25:07 +0000 (22:25 +0200)]
Removing XXX
Aaron Kaplan [Mon, 20 Oct 2014 20:24:20 +0000 (22:24 +0200)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
Aaron Kaplan [Mon, 20 Oct 2014 20:24:11 +0000 (22:24 +0200)]
more slides
David Durvaux [Mon, 20 Oct 2014 19:54:48 +0000 (21:54 +0200)]
Adding history
Aaron Kaplan [Mon, 20 Oct 2014 16:07:58 +0000 (18:07 +0200)]
add comment in README: many small commits are better
Aaron Kaplan [Sun, 19 Oct 2014 23:50:08 +0000 (01:50 +0200)]
intermediate version, add missing files
Aaron Kaplan [Sun, 19 Oct 2014 23:48:56 +0000 (01:48 +0200)]
intermediate version for hack.lu
Aaron Kaplan [Sun, 19 Oct 2014 20:58:07 +0000 (22:58 +0200)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
Aaron Kaplan [Sun, 19 Oct 2014 20:57:13 +0000 (22:57 +0200)]
first commit for the hack.lu 2014 talk
Aaron Kaplan [Sun, 19 Oct 2014 20:56:35 +0000 (22:56 +0200)]
gitignore
Aaron Zauner [Sun, 19 Oct 2014 16:16:41 +0000 (18:16 +0200)]
Merge https://github.com/BetterCrypto/Applied-Crypto-Hardening
Aaron Zauner [Sun, 19 Oct 2014 16:16:12 +0000 (18:16 +0200)]
Merge pull request #75 from FireFart/dovecot
disable SSLv3 for Dovecot
Christian Mehlmauer [Sat, 18 Oct 2014 06:43:51 +0000 (08:43 +0200)]
revert cipher list
Christian Mehlmauer [Fri, 17 Oct 2014 20:49:42 +0000 (22:49 +0200)]
added tested system
Christian Mehlmauer [Fri, 17 Oct 2014 20:45:05 +0000 (22:45 +0200)]
more sslv3
Christian Mehlmauer [Fri, 17 Oct 2014 20:42:55 +0000 (22:42 +0200)]
Disable SSLv3 for Dovecot
Aaron Kaplan [Fri, 17 Oct 2014 12:30:04 +0000 (14:30 +0200)]
+SSLv3 in the SSLCipherSuite, -SSLv3 in the SSLProtocol.
See the posting "The Poodle killed it" on the www.bettercrypto.org homepage
Aaron Kaplan [Fri, 17 Oct 2014 12:27:38 +0000 (14:27 +0200)]
Reverted the "Revert "!SSLv3 damn it"" commit.
Damn... I threw out too much. This was a decision on 7.7.
This reverts commit
ab51c68aa63dea11cc1e019e68c3bb8917da891f.
Aaron Kaplan [Fri, 17 Oct 2014 12:21:08 +0000 (14:21 +0200)]
Revert "!SSLv3 damn it"
This reverts commit
baff2df8387234c4fe7d255cac07cf7f8307a634.
Aaron Kaplan [Fri, 17 Oct 2014 12:21:07 +0000 (14:21 +0200)]
Revert "no SSLv3 damn it"
This reverts commit
b62a01c3883767ad1f4af4b3b807423830ef915d.
Aaron Kaplan [Fri, 17 Oct 2014 12:21:05 +0000 (14:21 +0200)]
Revert "no SSLv3 damn it"
This reverts commit
6ae00d390dd40343ecfd3607ae7475fc6896f6a7.
Aaron Kaplan [Fri, 17 Oct 2014 12:21:05 +0000 (14:21 +0200)]
Revert "no SSLv3 damn it"
This reverts commit
a4fed6e2245d31aca055f599617902a8a2deb2f4.
Aaron Kaplan [Fri, 17 Oct 2014 12:21:04 +0000 (14:21 +0200)]
Revert "no SSLv3 damn it"
This reverts commit
e8b61af0270bcd31ef55f35cebd1d0b3a35342ea.
Aaron Kaplan [Fri, 17 Oct 2014 12:21:03 +0000 (14:21 +0200)]
Revert "no SSLv3 damn it"
This reverts commit
3cffbdde793d21fa93446f43a35d615bc21c8894.
Aaron Kaplan [Fri, 17 Oct 2014 12:21:01 +0000 (14:21 +0200)]
Revert "no SSLv3 damn it"
This reverts commit
8b1a5f055fb9d436e7bb7b1325d632cc803b1123.
Aaron Kaplan [Fri, 17 Oct 2014 12:20:59 +0000 (14:20 +0200)]
Revert "no SSLv3 damn it"
This reverts commit
4f7d76eb7d395b66cf12eab0c57b135c9f9277a0.
Aaron Kaplan [Fri, 17 Oct 2014 12:19:06 +0000 (14:19 +0200)]
Revert "!SSLv3 damn it"
This reverts commit
ab51c68aa63dea11cc1e019e68c3bb8917da891f.
Aaron Kaplan [Fri, 17 Oct 2014 12:18:43 +0000 (14:18 +0200)]
Revert "no SSLv3 damn it"
This reverts commit
301c910000a27714a13ba7843c16379271a5ef7a.
Aaron Kaplan [Fri, 17 Oct 2014 10:15:30 +0000 (12:15 +0200)]
no SSLv3 damn it
Aaron Kaplan [Fri, 17 Oct 2014 10:14:43 +0000 (12:14 +0200)]
no SSLv3 damn it
Aaron Kaplan [Fri, 17 Oct 2014 10:14:09 +0000 (12:14 +0200)]
no SSLv3 damn it
Aaron Kaplan [Fri, 17 Oct 2014 10:14:01 +0000 (12:14 +0200)]
no SSLv3 damn it
Aaron Kaplan [Fri, 17 Oct 2014 10:13:27 +0000 (12:13 +0200)]
no SSLv3 damn it
Aaron Kaplan [Fri, 17 Oct 2014 10:10:49 +0000 (12:10 +0200)]
no SSLv3 damn it
Aaron Kaplan [Fri, 17 Oct 2014 10:10:13 +0000 (12:10 +0200)]
no SSLv3 damn it
Aaron Kaplan [Fri, 17 Oct 2014 10:09:25 +0000 (12:09 +0200)]
no SSLv3 damn it
Aaron Kaplan [Fri, 17 Oct 2014 10:08:29 +0000 (12:08 +0200)]
!SSLv3 damn it
Aaron Kaplan [Fri, 17 Oct 2014 09:56:15 +0000 (11:56 +0200)]
!SSLv3 damn it
Aaron Kaplan [Fri, 17 Oct 2014 09:47:46 +0000 (11:47 +0200)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
David Durvaux [Wed, 15 Oct 2014 16:35:19 +0000 (18:35 +0200)]
core presentation hack.lu
Aaron Kaplan [Thu, 9 Oct 2014 09:09:19 +0000 (11:09 +0200)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
Aaron Kaplan [Thu, 9 Oct 2014 09:09:06 +0000 (11:09 +0200)]
minor changes
Aaron Zauner [Mon, 6 Oct 2014 00:17:08 +0000 (02:17 +0200)]
Merge pull request #73 from oe1rfc/master
nginx/https-redirect: redirect to request domain, ditch regex
Clemens Hopfer [Sun, 5 Oct 2014 18:55:46 +0000 (20:55 +0200)]
nginx/https-redirect: use return instead of rewrite regex, $host instead of $server_name
David Durvaux [Tue, 30 Sep 2014 19:37:36 +0000 (21:37 +0200)]
Push draft presentation for hack.lu
Aaron Zauner [Sun, 28 Sep 2014 20:07:11 +0000 (22:07 +0200)]
Merge pull request #72 from oparoz/patch-2
Added 2 bash scripts
Olivier Paroz [Fri, 26 Sep 2014 11:04:32 +0000 (13:04 +0200)]
Added 2 bash scripts
Those scripts use openssl to parse the data and present nice summaries.
```
linux $ ./cipherscan www.google.com:443
...................
prio ciphersuite protocols pfs_keysize
1 ECDHE-RSA-CHACHA20-POLY1305 TLSv1.2 ECDH,P-256,256bits
2 ECDHE-RSA-AES128-GCM-SHA256 TLSv1.2 ECDH,P-256,256bits
3 ECDHE-RSA-AES128-SHA TLSv1.1,TLSv1.2 ECDH,P-256,256bits
4 ECDHE-RSA-RC4-SHA SSLv3,TLSv1,TLSv1.1,TLSv1.2 ECDH,P-256,256bits
5 AES128-GCM-SHA256 TLSv1.2
6 AES128-SHA256 TLSv1.2
7 AES128-SHA TLSv1.1,TLSv1.2
8 RC4-SHA SSLv3,TLSv1,TLSv1.1,TLSv1.2
9 RC4-MD5 SSLv3,TLSv1,TLSv1.1,TLSv1.2
10 ECDHE-RSA-AES256-GCM-SHA384 TLSv1.2 ECDH,P-256,256bits
11 ECDHE-RSA-AES256-SHA384 TLSv1.2 ECDH,P-256,256bits
12 ECDHE-RSA-AES256-SHA SSLv3,TLSv1,TLSv1.1,TLSv1.2 ECDH,P-256,256bits
13 AES256-GCM-SHA384 TLSv1.2
14 AES256-SHA256 TLSv1.2
15 AES256-SHA SSLv3,TLSv1,TLSv1.1,TLSv1.2
16 ECDHE-RSA-DES-CBC3-SHA SSLv3,TLSv1,TLSv1.1,TLSv1.2 ECDH,P-256,256bits
17 DES-CBC3-SHA SSLv3,TLSv1,TLSv1.1,TLSv1.2
18 ECDHE-RSA-AES128-SHA256 TLSv1.2 ECDH,P-256,256bits
Certificate: trusted, 2048 bit, sha1WithRSAEncryption signature
```
and
https://cloud.githubusercontent.com/assets/
8036727/
4375481/
a521aee8-433c-11e4-9c37-
c48464da80a1.jpg
Adi Kriegisch [Tue, 15 Jul 2014 09:17:33 +0000 (11:17 +0200)]
lighttpd: fix dh-file and ec-curve setting
AaronK [Fri, 11 Jul 2014 12:33:07 +0000 (14:33 +0200)]
Merge pull request #68 from schwindp/patch-1
Update im.tex - Thanks for the typo fixing!
Peter Schwindt [Fri, 11 Jul 2014 12:21:29 +0000 (14:21 +0200)]
Update im.tex
Only fix some typos this time.
Adi Kriegisch [Mon, 7 Jul 2014 19:26:07 +0000 (21:26 +0200)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
Adi Kriegisch [Mon, 7 Jul 2014 19:25:40 +0000 (21:25 +0200)]
consens about 4096bit minimum bit length (implementation implemented)
cm [Mon, 7 Jul 2014 18:00:27 +0000 (20:00 +0200)]
change apache rewrite to redirect
Pepi Zawodsky [Sat, 21 Jun 2014 14:38:47 +0000 (16:38 +0200)]
TODO: Some links are bogus to the website instead of staying within the PDF.
David Durvaux [Thu, 12 Jun 2014 11:18:02 +0000 (13:18 +0200)]
Fix date in PDF
David Durvaux [Thu, 12 Jun 2014 07:45:10 +0000 (09:45 +0200)]
Presentation as done M3AAWG/31
David Durvaux [Mon, 9 Jun 2014 15:28:30 +0000 (17:28 +0200)]
As done
David Durvaux [Mon, 9 Jun 2014 11:01:14 +0000 (13:01 +0200)]
Adding presentation for Thursday 12/06 - panel discussion
David Durvaux [Sun, 8 Jun 2014 22:08:58 +0000 (00:08 +0200)]
Last version (discussion with Aaron)
David Durvaux [Sun, 8 Jun 2014 16:00:22 +0000 (18:00 +0200)]
Add some comments for presenter ;)
David Durvaux [Sat, 7 Jun 2014 08:53:03 +0000 (10:53 +0200)]
Final version for presentation
David Durvaux [Fri, 6 Jun 2014 16:33:50 +0000 (18:33 +0200)]
Final presentation for M3AWWG
Aaron Zauner [Fri, 6 Jun 2014 14:47:22 +0000 (16:47 +0200)]
Merge https://github.com/martin-rublik/Applied-Crypto-Hardening
Aaron Zauner [Fri, 6 Jun 2014 14:44:43 +0000 (16:44 +0200)]
Merge https://github.com/krono/Applied-Crypto-Hardening
Tobias Pape [Wed, 4 Jun 2014 11:05:53 +0000 (13:05 +0200)]
Fix glossaries on <tl2012
xindy prior to 2013 does not handle missing \printglossaries
correctly, so switch to makeindex
Tobias Pape [Tue, 3 Jun 2014 21:57:23 +0000 (23:57 +0200)]
Fix tex stuf as requested by TODO2
Aaron Kaplan [Tue, 3 Jun 2014 20:47:38 +0000 (22:47 +0200)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
Aaron Kaplan [Tue, 3 Jun 2014 20:47:05 +0000 (22:47 +0200)]
ignore the gloassary for now
make two pdflatex runs in order to have the refs done correctly
cm [Tue, 3 Jun 2014 20:41:07 +0000 (22:41 +0200)]
Merge branch 'master' of https://git.bettercrypto.org/ach-master
cm [Tue, 3 Jun 2014 20:40:55 +0000 (22:40 +0200)]
updates IANA cipher suites
Aaron Kaplan [Tue, 3 Jun 2014 20:40:26 +0000 (22:40 +0200)]
comment out the chosing your own cipher section since it is not finished
Aaron Kaplan [Tue, 3 Jun 2014 20:39:33 +0000 (22:39 +0200)]
Azet found a way to include the ephermeral handshakes which work in older openssl versions as well as in newer ones.
See also: http://lists.cert.at/pipermail/ach/2014-May/001355.html
Aaron Kaplan [Tue, 3 Jun 2014 20:12:18 +0000 (22:12 +0200)]
remove todo
Aaron Kaplan [Tue, 3 Jun 2014 20:11:56 +0000 (22:11 +0200)]
revert