For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

SSL Labs Best Case Grades for Older TMOS Versions

Aspiring for that A+ rating on Qualys SSL Labs? F5er Brandon Frelich went to work to determine the best case scenarios for older versions of TMOS. Quite an engaging project, hopefully you enjoy readi...
Published Mar 16, 2016
Version 1.0
LTM
security
ssl
JRahm's avatar
Icon for Admin rankAdmin
Christ Follower, Husband, Father, Technologist. I love community and I especially love THIS community. My background is networking, but I've dabbled in all the F5 iStuff, I'm a recovering Perl guy, and am very much a python enthusiast. Learning alongside all of you in this accelerating industry toward modern apps and architectures.
View Profile
JRahm's avatar
Icon for Admin rankAdmin
Christ Follower, Husband, Father, Technologist. I love community and I especially love THIS community. My background is networking, but I've dabbled in all the F5 iStuff, I'm a recovering Perl guy, and am very much a python enthusiast. Learning alongside all of you in this accelerating industry toward modern apps and architectures.
View Profile
BAMcHenry's avatar
BAMcHenry
Ret. Employee
Mar 17, 2016
@Simon, I haven't read about any practical attacks against RSA 2048-bit keys. Given the performance cost is 5x, it's not that slight depending on your current load and hardware. Personally, I think effort is better spent in using only PFS ciphers, rather than investing deeply in 4096-bit keys. Wondering what's driving your adoption of 4096-bit beyond typical security paranoia. ;)