This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author dstufft
Recipients christian.heimes, dstufft, pitrou
Date 2014-03-22.16:26:49
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <>
Attached is a patch that:

* Switches the protocol to SSLv23 so that we can negotiate a TLS1.1 or TLS1.2 connection.
* Sets OP_CIPHER_SERVER_PREFERENCE for Purpose.CLIENT_AUTH so that our carefully selected cipher priority gives us better encryption and PFS
* Sets OP_SINGLE_DH_USE and OP_SINGLE_ECDH_USE for Purpose.CLIENT_AUTH to prevent re-use of the DH and ECDH keys in distinct sessions.
Date User Action Args
2014-03-22 16:26:50dstufftsetrecipients: + dstufft, pitrou, christian.heimes
2014-03-22 16:26:50dstufftsetmessageid: <>
2014-03-22 16:26:50dstufftlinkissue21013 messages
2014-03-22 16:26:50dstufftcreate