[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Bank information protected by 40-bit encryption....

To: "Daniel R. Oelke" <[email protected]>
Subject: Re: Bank information protected by 40-bit encryption....
From: Tom Weinstein <[email protected]>
Date: Wed, 10 Apr 1996 21:01:43 -0800
CC: [email protected]
Organization: Netscape Communications, Inc.
References: <[email protected]>
Sender: [email protected]

Daniel R. Oelke wrote:
> 
> If you are the worring sort (or are looking for a ripe target)
> point your browser at:
>     https://www.diginsite.com/clients.html
> 
> There is a list of 23 Credit Unions - some (or all) of which
> allow transactions to be done over the net.
> 
> A brief once over shows that it requires Netscape 2.0 or
> better so you will have encryption, but it does not warn you
> when you are using only a 40-bit session key vs. a 128-bit key.
> (Netscape wizards - is there a way that the server can detect
>  this so that a warning message could be put up?)

For Netscape servers, you can configure which ciphers you want to use.
I'm sure Apache-SSL and most other SSL-capable servers have the same
sort of thing.  I know that Wells Fargo, at least, requires 128-bit
encryption.

-- 
Sure we spend a lot of money, but that doesn't mean | Tom Weinstein
we *do* anything.  --  Washington DC motto          | [email protected]

Follow-Ups:
- Re: Bank information protected by 40-bit encryption....
  - From: [email protected]
- Re: Bank information protected by 40-bit encryption....
  - From: Jeff Weinstein <[email protected]>

References:
- Bank information protected by 40-bit encryption....
  - From: [email protected] (Daniel R. Oelke)

Prev by Date: Re: Bank information protected by 40-bit encryption....
Next by Date: Re: Scientologists may subpoena anonymous remailer records
Prev by thread: Re: Bank information protected by 40-bit encryption....
Next by thread: Re: Bank information protected by 40-bit encryption....
Index(es):
- Date
- Thread