Originally shared by Scott Gomez
Thanks to Edward Morbius, this morning I read about the NSA’s likely ability to have been snooping on SSL/TLS secure sessions by coming up with a means to compromise the Diffie-Hellman key exchange that sets up the session.
If you’re interested in knowing what sort of encryption your browser is using, and in what order it requests the various encryption schemes possible when setting up a connection, here’s a site that may help. The results are mostly in plain English.
h/t to the Electronic Frontier Foundation for the post, here:
https://www.eff.org/deeplinks/2015/10/how-to-protect-yourself-from-nsa-attacks-1024-bit-DH
that lead me to the site.