Author pitrou
Recipients alex, christian.heimes, dstufft, giampaolo.rodola, janssen, pitrou, vstinner
Date 2014-10-14.23:25:20
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <>
On the Web, there is indeed a good reaction time to security issues (especially in large providers). That may not be the case for all the other SSL services out there.

Since TLS_FALLBACK_SCSV is the recommended solution (not to mention it will work against other attacks), do you know if it's being implemented in OpenSSL? I would be surprised if nobody did it.
Date User Action Args
2014-10-14 23:25:20pitrousetrecipients: + pitrou, janssen, vstinner, giampaolo.rodola, christian.heimes, alex, dstufft
2014-10-14 23:25:20pitrousetmessageid: <>
2014-10-14 23:25:20pitroulinkissue22638 messages
2014-10-14 23:25:20pitroucreate