| |
|
RSS Feed - WebSphere MQ Support
|
RSS Feed - Message Broker Support
|
  |
|
| SSL / TLS vulnerability du jour |
« View previous topic :: View next topic » |
| Author |
Message
|
| PeterPotkay |
 Posted: Tue Nov 04, 2014 7:40 am Post subject: SSL / TLS vulnerability du jour |
 |
|
Poobah
Joined: 15 May 2001
Posts: 7722
|
|
| Back to top |
|
 |
| tczielke |
| Posted: Tue Nov 04, 2014 8:09 am Post subject: |
|
|
Guardian
Joined: 08 Jul 2010
Posts: 941
Location: Illinois, USA
|
| I think the security community (or some in the security community) frown on TLS 1.0, too. I agree, there are hardly any left. I guess at some point you have to pick one and just use it. |
|
| Back to top |
|
|
| mqjeff |
| Posted: Tue Nov 04, 2014 8:30 am Post subject: |
|
|
Grand Master
Joined: 25 Jun 2008
Posts: 17447
|
Security is about risk management.
You simply can't protect against zero-day exploits.
So you make the best efforts you can, and reevaluate frequently. |
|
| Back to top |
|
|
| tczielke |
| Posted: Tue Nov 04, 2014 8:37 am Post subject: |
|
|
Guardian
Joined: 08 Jul 2010
Posts: 941
Location: Illinois, USA
|
| The way that MQ locks you into specifying just one cipher that has to match on both the sender and receiver channel end, does make it difficult to be constantly changing that cipher spec, especially when you start to bring in third parties and client applications into the mix. |
|
| Back to top |
|
|
|
|
|
| |
|
Page 1 of 1 |
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
|
