Delivery-Date: Tue, 20 Oct 2015 05:27:47 -0400
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.2 required=5.0 tests=BAYES_00,RCVD_IN_DNSWL_MED,
	T_RP_MATCHES_RCVD autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id DA4EA1E0667;
	Tue, 20 Oct 2015 05:27:45 -0400 (EDT)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 2AD3337F17;
	Tue, 20 Oct 2015 09:27:41 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 7C4B337EC3
 for <tor-talk@lists.torproject.org>; Tue, 20 Oct 2015 09:27:37 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id y2OD6CXYu7iN for <tor-talk@lists.torproject.org>;
 Tue, 20 Oct 2015 09:27:37 +0000 (UTC)
Received: from bilestoad.getfoxyproxy.org (bilestoad.getfoxyproxy.org
 [162.243.99.25])
 by eugeni.torproject.org (Postfix) with ESMTP id 5982B37B18
 for <tor-talk@lists.torproject.org>; Tue, 20 Oct 2015 09:27:37 +0000 (UTC)
Received: from www.example.com (politkovskaja.torservers.net [77.247.181.165])
 by bilestoad.getfoxyproxy.org (Postfix) with ESMTPSA id 543D313BE93
 for <tor-talk@lists.torproject.org>;
 Tue, 20 Oct 2015 09:27:32 +0000 (UTC)
Message-ID: <562608F5.6000603@torproject.org>
Date: Tue, 20 Oct 2015 09:27:17 +0000
From: Georg Koppen <gk@torproject.org>
MIME-Version: 1.0
To: tor-talk@lists.torproject.org
References: <641167991.942.1445327519824.JavaMail.open-xchange@ox1app>
In-Reply-To: <641167991.942.1445327519824.JavaMail.open-xchange@ox1app>
Subject: Re: [tor-talk] How the NSA breaks Diffie-Hellmann
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: multipart/mixed; boundary="===============6486863350630366350=="
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--===============6486863350630366350==
Content-Type: multipart/signed; micalg=pgp-sha512;
 protocol="application/pgp-signature";
 boundary="n8MINW3kdw0gf18Chg4HCqR7JODFXiDWG"

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--n8MINW3kdw0gf18Chg4HCqR7JODFXiDWG
Content-Type: text/plain; charset=windows-1252
Content-Transfer-Encoding: quoted-printable

karsten.n@mailbox.org:
> An other more advanced solution for TorBrowser would be possible. You c=
an
> increase the min. length for DH parameter to 2048 bit in NSS lib. Min.
> length for DH parameter was set to 1024 in NSS 3.19.1 to avoid Logjam
> attack. May be, it is time to increase it to 20148 bit?
> https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.=
1_release_notes

Might be an idea for https://bugs.torproject.org/17374. I'd actually
like to see how much would break doing this (or the EFF proposal). I
guess quite a lot which makes me wondering whether this could be a
feature for the level "High" on the security slider.

Georg



--n8MINW3kdw0gf18Chg4HCqR7JODFXiDWG
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
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=TegF
-----END PGP SIGNATURE-----

--n8MINW3kdw0gf18Chg4HCqR7JODFXiDWG--

--===============6486863350630366350==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

--===============6486863350630366350==--

