> >Yes, but like you said earlier, it's SSLv2, not SSLv3. > > what's the advantage of using v3 for plan 9 connections? > plan 9 uses only the record format of v2.
exportfs, import and cpu are the three last commands still using devssl. When they will be migrated to devtls, devssl could be definitely removed. HTTP, SMTP, IMAP, POP and others already use both TLS 1.0 handshake and record protocols. It's easier to maintain a single encryption protocol than two. Moreover, if you want to interact with foreign implementations, they often don't implement SSL 2.0 anymore, or, at best, only support the standard and weak ciphers of SSL 2.0, and not the newest ones, standardized in TLS 1.0, 1.1, 1.2 and their extensions (mostly AES, SHA1 and SHA2). -- David du Colombier
