|
|
|
|
|
|
by upofadown
2283 days ago
|
|
|
>TLS is famously susceptible to downgrade attacks. The article is from 8 years ago so I would suggest that the fame has mostly faded. TLS downgrade attacks are not a thing in practice. A system with non-upgradable and broken crypto is much worse than something that requires a MITM attack to get at the broken crypto. I am not sure why there are opinions to the contrary. In either case you still have to fix things. The non-upgradable case will just be much much harder. |
|
|