Y
Hacker News
new
|
ask
|
show
|
jobs
by
newman314
5450 days ago
I was under the impression that RC4-MD5 was no longer recommended but RC4-SHA was okay (comparatively). Is this incorrect?
1 comments
yuhong
5448 days ago
The hash algorithm in TLS is
HMAC
-hash. Some uses of MD5 like secret suffix are now insecure (which is why usage of MD5 for certificate signing ended long ago), but HMAC is not one of them.
link