New Flaw Discovered – LogJam

Massive ‘Logjam’ Flaw Discovered

20-year-old flaw in TLS discovered.  TLS protects data during transmission over the Internet from eavesdropping. This includes websites, mail servers and VPNs.

Anyone hosting a web server or mail server “should disable support for export cipher suites and generate a unique 2048-bit Diffie-Hellman group”. Make sure your vendors are aware and taking appropriate action. You can test your server here. Everyone should apply appropriate patches to their web browsers.