Message214310
> The Python ssl module is used for servers and clients. Ideally servers will
> have prefer server ciphers on, but that doesn't always happen and providing
> a modern level of security for end users is preferable.
We should have specific defaults for servers in
create_default_context().
> The
> danger for breakage here is *tiny*, *miniscule*, almost non existent and the
> failure case is obvious and easy to fix.
Again: the point is maintenance later, not breakage now. |
|
Date |
User |
Action |
Args |
2014-03-20 23:40:30 | pitrou | set | recipients:
+ pitrou, lemburg, ncoghlan, vstinner, christian.heimes, benjamin.peterson, ezio.melotti, Arfrever, alex, r.david.murray, dstufft |
2014-03-20 23:40:30 | pitrou | link | issue20995 messages |
2014-03-20 23:40:30 | pitrou | create | |
|