Home / Companies / GitHub / Blog / Post Details
Content Deep Dive

Weak cryptographic standards removal notice

Blog post from GitHub

Post Details
Company
Date Published
Author
Patrick Toomey
Word Count
639
Company Posts That Month
18
Language
English
Hacker News Points
-
Post removed?
No
Summary

In a move to enhance security, GitHub announced the deprecation of several weak cryptographic standards, specifically TLSv1, TLSv1.1, and certain Diffie-Hellman algorithms, with a phased disabling beginning on February 8, 2018, and permanent cessation on February 22, 2018. The transition, affecting web, API, SSH, and git connections, is expected to impact a small fraction of older systems that still rely on the outdated algorithms. To facilitate the transition, GitHub will temporarily disable these algorithms for an hour to prompt updates, granting a two-week grace period for systems to upgrade their cryptographic libraries. Notable affected clients include older versions of Git-Credential-Manager-for-Windows, Git on certain Red Hat releases, and Java releases prior to JDK 8, all of which require updates to ensure compatibility with the newer TLSv1.2 protocol. Users of these systems are advised to update their software to avoid disruptions, with specific guidance provided for Visual Studio users to ensure they receive the necessary updates for continued access to GitHub services.

Trends Found in this Post

No tracked trend matches for this post yet.

Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.