Red Hat's Logjam Knowledgebase article

Posted May 21, 2015 18:43 UTC (Thu) by dowdle (subscriber, #659)
Parent article: Another crypto downgrade attack: Logjam

https://access.redhat.com/articles/1456263

Summary, RHEL6 (as of 6.6) and 7 are not vulnerable but...

"Red Hat Enterprise Linux 5 does support the export-grade cipher suite in its default cipher list. Red Hat does not plan to change the default cipher list in Red Hat Enterprise Linux 5."

I have left a comment to that and am curious what folks think about that response.

Red Hat's Logjam Knowledgebase article

Posted May 21, 2015 20:36 UTC (Thu) by Cyberax (✭ supporter ✭, #52523) [Link]

RedHat is pretty conservative with regards for the backwards compatibility. And if you're using RHEL5 (which is 8 years old by now) then you probably have some software that can be even older and supports only EXPORT ciphers or can't support large key size.