AnsweredAssumed Answered

DHE considered weak, what about OpenVPN?

Question asked by manu@qualys on Apr 5, 2015
Latest reply on Apr 7, 2015 by Ivan Ristić

Recently, Qualys SSL server test started rating DHE ciphers as weak. As I understood, this is because of MS client enforcing hardcoded key length of 1024 bits, which is getting too short.

 

Is DHE fine with other clients? I wonder about OpenVPN: as I understand its client relies on OpenSSL and does not use MS crypto stack.Are DHE ciphers safe here?

Outcomes