really drop SSLv2
Etienne Goyer
etienne.goyer at canonical.com
Thu Aug 5 15:02:07 BST 2010
On 10-08-04 06:05 PM, Kees Cook wrote:
> Hi Jim,
>
> On Wed, Aug 04, 2010 at 09:44:25AM -0400, Jim Tarvid wrote:
>> Why not kill the weak ciphers too?
>
> Sure! Can you send a patch for this?
I do not really see the point. Since the client and the server will
negotiate the strongest cipher they both support, what exactly would we
gain by removing cipher considered weak?
--
Etienne Goyer
Technical Account Manager - Canonical Ltd
Ubuntu Certified Instructor - LPIC-3
~= Ubuntu: Linux for Human Beings =~
More information about the ubuntu-devel
mailing list