Message203842
Antoine and I have agreed upon a slightly different API. I'm going to split it up into one public API that creates a best practice context and one internal stdlib API to unify all places that deals with SSL sockets.
AP:
how about we use more strict and modern settings for the public API? TLSv1, no insecure stuff like RC4, MD5, DSS etc. https://hynek.me/articles/hardening-your-web-servers-ssl-ciphers/ |
|
Date |
User |
Action |
Args |
2013-11-22 19:24:50 | christian.heimes | set | recipients:
+ christian.heimes, gvanrossum, janssen, pitrou |
2013-11-22 19:24:50 | christian.heimes | set | messageid: <1385148290.12.0.826847423651.issue19689@psf.upfronthosting.co.za> |
2013-11-22 19:24:50 | christian.heimes | link | issue19689 messages |
2013-11-22 19:24:49 | christian.heimes | create | |
|