Message 203844 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	pitrou
Recipients	christian.heimes, gvanrossum, janssen, pitrou
Date	2013-11-22.19:40:57
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1385149254.2432.13.camel@fsol>
In-reply-to	<1385148290.12.0.826847423651.issue19689@psf.upfronthosting.co.za>

Content
> how about we use more strict and modern settings for the public API? > TLSv1, no insecure stuff like RC4, MD5, DSS etc. > https://hynek.me/articles/hardening-your-web-servers-ssl-ciphers/ Fine, but I'd like to see something more open-ended for the ciphers string. e.g. 'HIGH:!ADH:!AECDH:!MD5:!DSS:!aNULL:!eNULL:!LOW:!EXPORT:!SSLv2' ?

> how about we use more strict and modern settings for the public API?
> TLSv1, no insecure stuff like RC4, MD5, DSS etc.
> https://hynek.me/articles/hardening-your-web-servers-ssl-ciphers/

Fine, but I'd like to see something more open-ended for the ciphers
string. e.g.
'HIGH:!ADH:!AECDH:!MD5:!DSS:!aNULL:!eNULL:!LOW:!EXPORT:!SSLv2' ?

History
Date	User	Action	Args
2013-11-22 19:40:57	pitrou	set	recipients: + pitrou, gvanrossum, janssen, christian.heimes
2013-11-22 19:40:57	pitrou	link	issue19689 messages
2013-11-22 19:40:57	pitrou	create