Author dstufft
Recipients Arfrever, alex, benjamin.peterson, christian.heimes, dstufft, ezio.melotti, lemburg, ncoghlan, pitrou, r.david.murray, vstinner
Date 2014-03-21.18:52:46
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1395427966.86.0.384115471333.issue20995@psf.upfronthosting.co.za>
In-reply-to
Content
Er, I typed issue and meant usage. Right now the only difference between restricted ciphers and the default ciphers is restricted ciphers have no RC4 and no DSS. You wanted this issue limited to client changes and I'm not sure how to do that without enabling RC4/DSS for servers (which is a regression in the security of the restricted ciphers).

I think if we want to make restricted ciphers apply only for servers that's OK but as this ticket doesn't change the restrictions (other than omitting SRP/PSK and SEED/IDEA) that there's no changes to be made here, it should be accepted and then another ticket for restricting the restricted ciphers to servers only? Or what did you have in mind?
History
Date User Action Args
2014-03-21 18:52:46dstufftsetrecipients: + dstufft, lemburg, ncoghlan, pitrou, vstinner, christian.heimes, benjamin.peterson, ezio.melotti, Arfrever, alex, r.david.murray
2014-03-21 18:52:46dstufftsetmessageid: <1395427966.86.0.384115471333.issue20995@psf.upfronthosting.co.za>
2014-03-21 18:52:46dstufftlinkissue20995 messages
2014-03-21 18:52:46dstufftcreate