Hacker News new | ask | show | jobs
by jvehent 4130 days ago
> let those rare clients use non-PFS suites

That's not acceptable for us, which is why DHE is there. Mozilla aims to provide the best possible security to the larger number, and that drives a number of the choices in the recommended ciphers.
1 comments
edwintorok 4130 days ago
How about the Modern suite, where you already give up compatibility with old stuff? Is non-EC DHE needed there?
link