On the built in browser in CyanogenMod 10.1.3: > Bad: Your client is using TLS 1... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		poizan42 on Jan 9, 2014 \| parent \| context \| favorite \| on: How's my SSL? On the built in browser in CyanogenMod 10.1.3: > Bad: Your client is using TLS 1.0, which is very old, possibly susceptible to the BEAST attack, and doesn't have the best cipher suites available either. Interestingly I get "Probably good" using the Chrome browser on the same phone.

agl on Jan 9, 2014 [–]

Chrome on Android ships with its own copy of OpenSSL and so can do things different than Android Browser.

gcp on Jan 9, 2014 | [–]

It's not using NSS? (I was going to correct you but then I remembered who you are...)

agl on Jan 9, 2014 | | [–]

Chrome uses NSS everywhere except on Android, where it's OpenSSL.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact