Message102782
Antoine Pitrou wrote:
>
> Antoine Pitrou<pitrou@free.fr> added the comment:
>
> After some investigation, the error does occur because of the aforementioned changelog entry (SSLv2 weak ciphers are now disabled by default). To check it I just added the following line to newPySSLObject():
>
> SSL_CTX_set_cipher_list(self->ctx, "ALL");
>
> Of course this isn't desirable: we shouldn't blindly enable weak ciphers. Instead we could simply add an argument to configure allowed ciphers, and use "ALL" in our tests. Or we could add a separate method to configure ciphers.
>
> (this begs the question of whether this is suitable post-beta1)
>
> What do you think?
List of ciphers is application dependent and configure script can't
limit users(applications) .
Roumen |
|
Date |
User |
Action |
Args |
2010-04-10 14:51:57 | rpetrov | set | recipients:
+ rpetrov, janssen, pitrou, vstinner, giampaolo.rodola, benjamin.peterson, Arfrever, flox |
2010-04-10 14:51:55 | rpetrov | link | issue8322 messages |
2010-04-10 14:51:55 | rpetrov | create | |
|