Hacker News new | past | comments | ask | show | jobs | submit login

There's no "better TLS" out there for shipping a tool that connects to millions of different servers. There are many better options than JWT.

Unlike JWT, hundreds of the world's best security engineers at various browser companies are working on mitigating the situation as well as possible.

Indeed, however, consider that servers can and do limit which TLS versions and cipher suites they accept.

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact