This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author alex
Recipients alex, christian.heimes, dstufft, pitrou
Date 2014-03-22.18:19:21
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <>
Unfortunately most TLS implementations (particularly those in browser stacks) are vulnerable to downgrade attacks, whereby an attacker can send some malicious packets to simulate a connection failure and cause a lower version of the protocol to be negotiated, has some info on it. As a result, whenever possible it's really desirable to completely disallow as many poor choices as possible.
Date User Action Args
2014-03-22 18:19:21alexsetrecipients: + alex, pitrou, christian.heimes, dstufft
2014-03-22 18:19:21alexsetmessageid: <>
2014-03-22 18:19:21alexlinkissue21013 messages
2014-03-22 18:19:21alexcreate