{"id":4322,"date":"2014-10-28T09:22:03","date_gmt":"2014-10-28T08:22:03","guid":{"rendered":"https:\/\/www.bdjl.de\/localhost\/?p=4322"},"modified":"2014-12-10T08:08:25","modified_gmt":"2014-12-10T07:08:25","slug":"zu-sicher","status":"publish","type":"post","link":"https:\/\/www.bdjl.de\/localhost\/?p=4322","title":{"rendered":"Zu sicher"},"content":{"rendered":"

Beachte: Update des Beitrags!<\/a><\/p>\n

Nach den Anpassungen der Apache Configuration<\/a> in Folge des Poodle Bugs erhielt ich zu Beginn der Woche eine R\u00fcckmeldung einer Vista Nutzerin aus dem Kollegium, dass sie nicht mehr auf unsere Seiten zugreifen k\u00f6nne. Ich nahm das zuerst nicht weiter ernst, tippte auf lokale Probleme. Dann stellte ich unter Cubian X <\/a>fest, dass Chromium nur noch einen 113er Fehler anzeigte, der f\u00fcr<\/p>\n

ERR_SSL_VERSION_OR_CIPHER_MISMATCH<\/p><\/blockquote>\n

steht und Iceweasel merkte an<\/p>\n

ssl_error_no_cypher_overlap<\/p><\/blockquote>\n

Diverse Browser unter Android 4.0.3 (Lightning, Tint Browser, Zirco) wollten ebenfalls nicht mehr meine eigenen HTTPS verschl\u00fcsselten Seiten aufrufen. W\u00e4hrend unter Android der Firefox noch einsetzbar war, so ging auf meinem Spielkistchen mit Cubian X gar nichts mehr. Die Software auf diesem System l\u00e4sst sich nicht einfach aktualisieren – meine Apache-Konfiguration war f\u00fcr das Ding schlicht „zu sicher“.<\/p>\n

Ich kam dann irgendwann auf Idee, die unterst\u00fctzten Cipher Suiten miteinander zu vergleichen. Das geht direkt bei Qualys SSL Labs<\/a> – oder f\u00fcr den Browser auch hier:\u00a0https:\/\/cc.dcsec.uni-hannover.de\/check<\/a> . Die Schuppen fielen dann endlich von den Augen.<\/p>\n

Sichere Konfiguration<\/h2>\n

Eintrag:<\/p>\n

SSLProtocol all -SSLv2 -SSLv3<\/p>\n

SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:!LOW:!SSLv2:!SSLv3:!EXPORT<\/p><\/blockquote>\n

Ergebnis unter Debian:<\/p>\n

\"kvfgnet_debianssl\"<\/a><\/p>\n

Unterst\u00fctzte Browsersuiten:<\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
Handshake Simulation<\/td>\n<\/tr>\n<\/thead>\n
Android 2.3.7<\/a> \u00a0 No SNI 2<\/sup><\/span><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
Android 4.0.4<\/a><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
Android 4.1.1<\/a><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
Android 4.2.2<\/a><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
Android 4.3<\/a><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
Android 4.4.2<\/a><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
BingBot Dec 2013<\/a> \u00a0 No SNI 2<\/sup><\/span><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
BingPreview Jun 2014<\/a><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
Chrome 37 \/ OS X<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xc02f<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
Firefox 24.2.0 ESR \/ Win 7<\/a><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
Firefox 32 \/ OS X<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xc02f<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
Googlebot Jun 2014<\/a><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
IE 6 \/ XP<\/a> \u00a0 No FS 1<\/sup><\/span> \u00a0 No SNI 2<\/sup><\/span><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
IE 7 \/ Vista<\/a><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
IE 8 \/ XP<\/a> \u00a0 No FS 1<\/sup><\/span> \u00a0 No SNI 2<\/sup><\/span><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
IE 8-10 \/ Win 7<\/a> \u00a0R<\/span><\/span><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
IE 11 \/ Win 7<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_RSA_WITH_AES_128_CBC_SHA256 (0x3c<\/code>) \u00a0 No FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
IE 11 \/ Win 8.1<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
IE Mobile 10 \/ Win Phone 8.0<\/a><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
IE Mobile 11 \/ Win Phone 8.1<\/a><\/td>\nTLS 1.2<\/span><\/td>\nTLS_RSA_WITH_AES_128_CBC_SHA256 (0x3c<\/code>) \u00a0 No FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
Java 6u45<\/a> \u00a0 No SNI 2<\/sup><\/span><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
Java 7u25<\/a><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
Java 8b132<\/a><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 (0xc027<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
OpenSSL 0.9.8y<\/a><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
OpenSSL 1.0.1h<\/a><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Safari 5.1.9 \/ OS X 10.6.8<\/a><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
Safari 6 \/ iOS 6.0.1<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Safari 7 \/ iOS 7.1<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Safari 8 \/ iOS 8.0 Beta<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Safari 6.0.4 \/ OS X 10.8.4<\/a> \u00a0R<\/span><\/span><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
Safari 7 \/ OS X 10.9<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Yahoo Slurp Jun 2014<\/a> \u00a0 No SNI 2<\/sup><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
YandexBot Sep 2014<\/a><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
(1) Clients that do not support Forward Secrecy (FS) are excluded when determining support for it.<\/span><\/td>\n<\/tr>\n
(2) No support for virtual SSL hosting (SNI). Connects to the default site if the server uses SNI.<\/span><\/td>\n<\/tr>\n
(3) Only first connection attempt simulated. Browsers tend to retry with a lower protocol version.<\/span><\/td>\n<\/tr>\n
(R) Denotes a reference browser or client, with which we expect better effective security.<\/span><\/td>\n<\/tr>\n
(All) We use defaults, but some platforms do not use their best protocols and features (e.g., Java 6 & 7, older IE).<\/span><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

\u00dcberarbeitete Konfiguration<\/h2>\n

Eintrag:<\/p>\n

SSLProtocol all -SSLv2 -SSLv3<\/p>\n

SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5<\/p><\/blockquote>\n

Ergebnis unter Debian:<\/p>\n

\"debianssl\"<\/a><\/p>\n

Unterst\u00fctzte Browsersuiten:<\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
Handshake Simulation<\/td>\n<\/tr>\n<\/thead>\n
Android 2.3.7<\/a> \u00a0 No SNI 2<\/sup><\/span><\/td>\nTLS 1.0<\/td>\nTLS_RSA_WITH_RC4_128_SHA (0x5<\/code>) \u00a0 No FS<\/span> \u00a0 RC4<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
Android 4.0.4<\/a><\/td>\nTLS 1.0<\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Android 4.1.1<\/a><\/td>\nTLS 1.0<\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Android 4.2.2<\/a><\/td>\nTLS 1.0<\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Android 4.3<\/a><\/td>\nTLS 1.0<\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Android 4.4.2<\/a><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
BingBot Dec 2013<\/a> \u00a0 No SNI 2<\/sup><\/span><\/td>\nTLS 1.0<\/td>\nTLS_RSA_WITH_AES_128_CBC_SHA (0x2f<\/code>) \u00a0 No FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
BingPreview Jun 2014<\/a><\/td>\nTLS 1.0<\/td>\nTLS_DHE_RSA_WITH_AES_256_CBC_SHA (0x39<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Chrome 37 \/ OS X<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xc02f<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
Firefox 24.2.0 ESR \/ Win 7<\/a><\/td>\nTLS 1.0<\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Firefox 32 \/ OS X<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xc02f<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
Googlebot Jun 2014<\/a><\/td>\nTLS 1.0<\/td>\nTLS_ECDHE_RSA_WITH_RC4_128_SHA (0xc011<\/code>) \u00a0 FS<\/span> \u00a0 RC4<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
IE 6 \/ XP<\/a> \u00a0 No FS 1<\/sup><\/span> \u00a0 No SNI 2<\/sup><\/span><\/td>\nProtocol or cipher suite mismatch<\/span><\/td>\nFail3<\/sup><\/span><\/td>\n<\/tr>\n
IE 7 \/ Vista<\/a><\/td>\nTLS 1.0<\/td>\nTLS_RSA_WITH_AES_128_CBC_SHA (0x2f<\/code>) \u00a0 No FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
IE 8 \/ XP<\/a> \u00a0 No FS 1<\/sup><\/span> \u00a0 No SNI 2<\/sup><\/span><\/td>\nTLS 1.0<\/td>\nTLS_RSA_WITH_RC4_128_SHA (0x5<\/code>) \u00a0 No FS<\/span> \u00a0 RC4<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
IE 8-10 \/ Win 7<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.0<\/td>\nTLS_RSA_WITH_AES_128_CBC_SHA (0x2f<\/code>) \u00a0 No FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
IE 11 \/ Win 7<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_RSA_WITH_AES_128_CBC_SHA256 (0x3c<\/code>) \u00a0 No FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
IE 11 \/ Win 8.1<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
IE Mobile 10 \/ Win Phone 8.0<\/a><\/td>\nTLS 1.0<\/td>\nTLS_RSA_WITH_AES_128_CBC_SHA (0x2f<\/code>) \u00a0 No FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
IE Mobile 11 \/ Win Phone 8.1<\/a><\/td>\nTLS 1.2<\/span><\/td>\nTLS_RSA_WITH_AES_128_CBC_SHA256 (0x3c<\/code>) \u00a0 No FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
Java 6u45<\/a> \u00a0 No SNI 2<\/sup><\/span><\/td>\nTLS 1.0<\/td>\nTLS_RSA_WITH_RC4_128_SHA (0x5<\/code>) \u00a0 No FS<\/span> \u00a0 RC4<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
Java 7u25<\/a><\/td>\nTLS 1.0<\/td>\nTLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
Java 8b132<\/a><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 (0xc027<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
OpenSSL 0.9.8y<\/a><\/td>\nTLS 1.0<\/td>\nTLS_DHE_RSA_WITH_AES_256_CBC_SHA (0x39<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
OpenSSL 1.0.1h<\/a><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Safari 5.1.9 \/ OS X 10.6.8<\/a><\/td>\nTLS 1.0<\/td>\nTLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n128<\/td>\n<\/tr>\n
Safari 6 \/ iOS 6.0.1<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Safari 7 \/ iOS 7.1<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Safari 8 \/ iOS 8.0 Beta<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Safari 6.0.4 \/ OS X 10.8.4<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.0<\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Safari 7 \/ OS X 10.9<\/a> \u00a0R<\/span><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
Yahoo Slurp Jun 2014<\/a> \u00a0 No SNI 2<\/sup><\/span><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
YandexBot Sep 2014<\/a><\/td>\nTLS 1.2<\/span><\/td>\nTLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030<\/code>) \u00a0 FS<\/span> <\/span><\/td>\n256<\/td>\n<\/tr>\n
(1) Clients that do not support Forward Secrecy (FS) are excluded when determining support for it.<\/span><\/td>\n<\/tr>\n
(2) No support for virtual SSL hosting (SNI). Connects to the default site if the server uses SNI.<\/span><\/td>\n<\/tr>\n
(3) Only first connection attempt simulated. Browsers tend to retry with a lower protocol version.<\/span><\/td>\n<\/tr>\n
(R) Denotes a reference browser or client, with which we expect better effective security.<\/span><\/td>\n<\/tr>\n
(All) We use defaults, but some platforms do not use their best protocols and features (e.g., Java 6 & 7, older IE).<\/span><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n","protected":false},"excerpt":{"rendered":"

Beachte: Update des Beitrags! Nach den Anpassungen der Apache Configuration in Folge des Poodle Bugs erhielt ich zu Beginn der Woche eine R\u00fcckmeldung einer Vista Nutzerin aus dem Kollegium, dass sie nicht mehr auf unsere Seiten zugreifen k\u00f6nne. Ich nahm das zuerst nicht weiter ernst, tippte auf lokale Probleme. Dann stellte ich unter Cubian X […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5,10,294],"tags":[340,440,314,179,474,453,140],"class_list":["post-4322","post","type-post","status-publish","format-standard","hentry","category-linux","category-schule","category-tablet-cubietruck","tag-apache","tag-cubian","tag-debian","tag-firefox","tag-iceweasel","tag-ssl","tag-verschlusselung"],"_links":{"self":[{"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=\/wp\/v2\/posts\/4322","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4322"}],"version-history":[{"count":6,"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=\/wp\/v2\/posts\/4322\/revisions"}],"predecessor-version":[{"id":4400,"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=\/wp\/v2\/posts\/4322\/revisions\/4400"}],"wp:attachment":[{"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4322"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4322"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.bdjl.de\/localhost\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4322"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}