You are here

Chrome vs TLS (https) vulnerabilities

1 post / 0 new
djc
Offline
Last seen: 4 years 11 months ago
Joined: 2010-11-26 15:01
Chrome vs TLS (https) vulnerabilities

Firefox permits you to protect yourself from recently disclosed vulnerability in 1024-bit Diffie-Hellman encryption by changing parameters from within Firefox, but Chrome doesn't. The only method I see to get this protection in Chrome on Windows, tested with 46.0.2490.71 under Windows 7, is to right-click the Chrome shortcut, click "properties" and then add this to the end of the target:

--cipher-suite-blacklist=0x0033,0x0039,0x009E,0xcc15

How does one do this within PortableApps?

See the EFF's How to Protect Yourself from NSA Attacks on 1024-bit DH.

djc