Until today the example Nginx reverse proxy config for Etherpad allowed for weaker SSL encryption than is acceptable. You can see if your instance is vulnerable by checking your instances SSL cert Check your Nginx config to see if this line exists: ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP; If so replace with: ssl_ciphers “EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 …
Monthly Archives: April 2014
Skype and Hangouts alternative
We’re tired of being spied upon and we’re tied of tech companies colluding. With no sign of an end we think it’s time to take control. So.. We’re Introducing an Etherpad instance to serve as an alternative to Microsoft Skype and Google Hangouts, we’re using it internally but we’re inviting you to try it out …
Etherpad for the masses
Over time Etherpad has grown, it’s become more than we aimed for it to ever be with many large tech and activist organizations deploying their own instances. However, one problem we have is the ability for smaller organizations to easily roll their own Etherpad instance on the web. Don’t get us wrong, there are some …
~<3 Critical SSL security issue
TLDR; Update your OpenSSL to at least 1.0.1e(Ubuntu) and consider re-keying your Etherpad deployment if you use OpenSSL for your SSL certificates. beta.etherpad.org has been updated. Find out more about ~