Remediating Logjam: an iRule Countermeasure

#SSL #LOGJAM Professor Matthew Green of John Hopkins announced a weakness in the SSL Protocol and has given it the name Logjam (see weakdh.org). With Logjam, a malicious attacker can get access to...
Published May 23, 2015
Version 1.0
logjam
security
ssl
brainhub_150787's avatar
brainhub_150787
Icon for Nimbostratus rankNimbostratus
May 27, 2015
Different devices don't share DHE groups and any given device regenerates its group often. This feature is not configurable and cannot be disabled. HA cluster of nodes will share the groups within HA, but they are likewise regenerated often. If DHE 1024 is insufficient, please consider ECDHE P-256.