Logjam Vulnerability mitigation on Slimjet 4.X
Posted: Fri May 29, 2015 6:11 am
Slimjet authors are working on the Logjam Vulnerability.
The temporary fix is to change the Slimjet command line adding this parameter:
--cipher-suite-blacklist=0xcc15,0x009e,0x0039,0x0033
If you have Slimjet installed in C:\Program Files (x86)\Slimjet\ then your new command line in the Destination field will be:
It will disable the DHE part of the cipher suite.
See the difference before and after applying the fix on https://www.ssllabs.com/ssltest/viewMyClient.html
Have a nice and safe browsing with Slimjet!
Galdom
source (https://community.qualys.com/message/29519#29519)
p.s.
Firefox 38 is vulnerable too, but the fix is more easy to apply. See http://forums.mozillazine.org/viewtopic ... #p14165963 to fix FX38
The temporary fix is to change the Slimjet command line adding this parameter:
--cipher-suite-blacklist=0xcc15,0x009e,0x0039,0x0033
If you have Slimjet installed in C:\Program Files (x86)\Slimjet\ then your new command line in the Destination field will be:
Code: Select all
C:\Program Files (x86)\Slimjet\slimjet.exe --cipher-suite-blacklist=0xcc15,0x009e,0x0039,0x0033See the difference before and after applying the fix on https://www.ssllabs.com/ssltest/viewMyClient.html
Have a nice and safe browsing with Slimjet!
Galdom
source (https://community.qualys.com/message/29519#29519)
p.s.
Firefox 38 is vulnerable too, but the fix is more easy to apply. See http://forums.mozillazine.org/viewtopic ... #p14165963 to fix FX38