CRIME-Vulnerability/EN/Solution Tips
Version vom 6. Februar 2019, 15:55 Uhr von Siwebot (Diskussion | Beiträge)
[1] can be defeated by preventing the use of compression. Either on the client side, if the browser disables the compression of SPDY requests, or if the web page prevents the use of data compression for such transactions using the protocol negotiation characteristics of the TLS protocol. Deactivate TLS compression on your server.