From 89ba766d851e027cd43d81e016c761cc2fbccb69 Mon Sep 17 00:00:00 2001 From: Daniel Micay Date: Wed, 23 Dec 2020 17:48:26 -0500 Subject: [PATCH] elaborate a bit on strong cipher configuration --- static/features.html | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/static/features.html b/static/features.html index 2f55dee3..78cbc851 100644 --- a/static/features.html +++ b/static/features.html @@ -171,7 +171,8 @@ of our web services, etc.
  • No proprietary services
  • Authenticated encryption for all of our services
  • -
  • Strong cipher configurations for all of our services (SSH, TLS, etc.)
  • +
  • Strong cipher configurations for all of our services (SSH, TLS, etc.) with + only modern AEAD ciphers providing forward secrecy
  • DNSSEC for all our domains
  • SSHFP across all domains for pinning SSH keys
  • DANE TLSA records for pinning keys for all our TLS services (unfortunately only