Merge remote-tracking branch 'origin/maint-0.2.4'

author: Nick Mathewson <nickm@torproject.org> 2013-10-31 14:03:01 -0400
committer: Nick Mathewson <nickm@torproject.org> 2013-10-31 14:03:01 -0400
commit: 61029d69269d58e530028ee69b148581d3d8bd93 (patch)
tree: 717d5e656824d14e9ad994e586a99fca6e65a180 /changes
parent: a19e3e26f467ecbf31f2c4174d699cd1989caf7a (diff)
parent: 1b312f7b55bc5322f3029ad12715d9f348d44650 (diff)
download: tor-61029d69269d58e530028ee69b148581d3d8bd93.tar
tor-61029d69269d58e530028ee69b148581d3d8bd93.tar.gz
1 files changed, 8 insertions, 0 deletions
diff --git a/changes/bug9780 b/changes/bug9780
new file mode 100644
index 000000000..3cb51bd52
--- /dev/null
+++ b/changes/bug9780
@@ -0,0 +1,8 @@
+  o Minor bugfixes (performance, fingerprinting):
+    - Our default TLS ecdhe groups were backwards: we meant to be using
+      P224 for relays (for performance win) and P256 for bridges (since
+      it is more common in the wild). Instead we had it backwards. After
+      reconsideration, we decided that the default should be P256 on all
+      hosts, since its security is probably better, and since P224 is
+      reportedly used quite little in the wild.  Found by "skruffy" on
+      IRC. Fix for bug 9780; bugfix on 0.2.4.8-alpha.
author	Nick Mathewson <nickm@torproject.org>	2013-10-31 14:03:01 -0400
committer	Nick Mathewson <nickm@torproject.org>	2013-10-31 14:03:01 -0400
commit	61029d69269d58e530028ee69b148581d3d8bd93 (patch)
tree	717d5e656824d14e9ad994e586a99fca6e65a180 /changes
parent	a19e3e26f467ecbf31f2c4174d699cd1989caf7a (diff)
parent	1b312f7b55bc5322f3029ad12715d9f348d44650 (diff)
download	tor-61029d69269d58e530028ee69b148581d3d8bd93.tar tor-61029d69269d58e530028ee69b148581d3d8bd93.tar.gz