Hi Pasi, >>> As the web servers are migrating away from SSLv3 more secure >>> protocols need to be enabled. >> I just wonder should we just disable sslv3 support all together? > > I thought about it but was bit afraid there are still systems which only > support sslv3 (even it is broken++). On the other hand mozilla and google are > dropping sslv3 from their browsers within next 3 months, so I guess it > wouldn't hurt so much in the end. > > I can do v2 of that patch which would remove sslv3-support if you want.
default SSLv3 off is a good idea, but we might want to have a main.conf option that allows integrators to choose the insecure SSLv3 as valid option. Regards Marcel _______________________________________________ connman mailing list [email protected] https://lists.connman.net/mailman/listinfo/connman
