Message 217066 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	markk
Recipients	Arfrever, alex, benjamin.peterson, christian.heimes, dstufft, ezio.melotti, jcea, lemburg, markk, ncoghlan, pitrou, python-dev, r.david.murray, vstinner
Date	2014-04-23.12:54:10
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1398257651.22.0.498425276143.issue20995@psf.upfronthosting.co.za>
In-reply-to

Content
The cipher strings rely too much on AES for my taste. Imagine that ChaCha20Poly1305 or any other strong cipher suite is introduced to OpenSSL in the future. Enabling using general, and demoting using narrow terms, seems IMHO a better approach. For example: ECDH+HIGH:DH+HIGH:!aNULL:!MD5:!RC4:-3DES:HIGH

The cipher strings rely too much on AES for my taste. Imagine that ChaCha20Poly1305 or any other strong cipher suite is introduced to OpenSSL in the future.

Enabling using general, and demoting using narrow terms, seems IMHO a better approach. For example:

    ECDH+HIGH:DH+HIGH:!aNULL:!MD5:!RC4:-3DES:HIGH

History
Date	User	Action	Args
2014-04-23 12:54:11	markk	set	recipients: + markk, lemburg, jcea, ncoghlan, pitrou, vstinner, christian.heimes, benjamin.peterson, ezio.melotti, Arfrever, alex, r.david.murray, python-dev, dstufft
2014-04-23 12:54:11	markk	set	messageid: <1398257651.22.0.498425276143.issue20995@psf.upfronthosting.co.za>
2014-04-23 12:54:11	markk	link	issue20995 messages
2014-04-23 12:54:10	markk	create