CRIME-Vulnerability/EN/Solution Tips: Unterschied zwischen den Versionen

Version vom 3. April 2019, 16:04 Uhr

Crime vulnerability can be defeated by preventing the use of compression. Either on the client side, if the browser disables the compression of SPDY requests, or if the web page prevents the use of data compression for such transactions using the protocol negotiation characteristics of the TLS protocol. Deactivate TLS compression on your server.

Version vom 6. Februar 2019, 15:55 Uhr (Quelltext anzeigen) Siwebot (Diskussion \| Beiträge) ← Zum vorherigen Versionsunterschied		Version vom 3. April 2019, 16:04 Uhr (Quelltext anzeigen) Siwebot (Diskussion \| Beiträge) Zum nächsten Versionsunterschied →
Zeile 1:		Zeile 1:
−	~~[https://en.wikipedia.org/wiki/CRIME]~~ can be defeated by preventing the use of compression. Either on the client side, if the browser disables the compression of SPDY requests, or if the web page prevents the use of data compression for such transactions using the protocol negotiation characteristics of the [https://en.wikipedia.org/wiki/Transport_Layer_Security TLS] protocol. Deactivate TLS compression on your server.	+	Crime vulnerability can be defeated by preventing the use of compression. Either on the client side, if the browser disables the compression of SPDY requests, or if the web page prevents the use of data compression for such transactions using the protocol negotiation characteristics of the [https://en.wikipedia.org/wiki/Transport_Layer_Security TLS] protocol. Deactivate TLS compression on your server.

CRIME-Vulnerability/EN/Solution Tips: Unterschied zwischen den Versionen

Version vom 3. April 2019, 16:04 Uhr

Navigationsmenü

Meine Werkzeuge

Namensräume

Varianten

Ansichten

Mehr

Suche

Navigation

Siwecos

Werkzeuge