Message 149842 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	pitrou
Recipients	gregory.p.smith, naif, pitrou
Date	2011-12-19.11:17:36
SpamBayes Score	5.703928e-06
Marked as misclassified	No
Message-id	<1324293457.36.0.697127487169.issue13636@psf.upfronthosting.co.za>
In-reply-to

Content
As I said, I don't think maintaining an explicit list of ciphers ourselves is reasonable, since there are no crypto experts (AFAICT) amongst the Python core developers. Also, maintaining an explicit list of ciphers means people wouldn't benefit automatically from new ciphers unless Python itself is modified. However, as I've proposed on issue13627, we could call set_ciphers("HIGH") by default. This excludes legacy ciphers (such as RC4, DES) without having us maintain an explicit list.

As I said, I don't think maintaining an explicit list of ciphers ourselves is reasonable, since there are no crypto experts (AFAICT) amongst the Python core developers.

Also, maintaining an explicit list of ciphers means people wouldn't benefit automatically from new ciphers unless Python itself is modified.

However, as I've proposed on issue13627, we could call set_ciphers("HIGH") by default. This excludes legacy ciphers (such as RC4, DES) without having us maintain an explicit list.

History
Date	User	Action	Args
2011-12-19 11:17:37	pitrou	set	recipients: + pitrou, gregory.p.smith, naif
2011-12-19 11:17:37	pitrou	set	messageid: <1324293457.36.0.697127487169.issue13636@psf.upfronthosting.co.za>
2011-12-19 11:17:36	pitrou	link	issue13636 messages
2011-12-19 11:17:36	pitrou	create