On Wed, 20 Aug 2025, rsbec...@nexbridge.com wrote:
However, I do know of very large financial institutions internationally who are currently using OpenSSL 1.0.2 and 1.1.1. This might impact them.
That implies they are either insecure or are paying for support from OpenSSL already.
If they are in the first category, I don't think we help them by prolonging a bad situation. If they are in the second category, I don't see why we should support a commercial business for free that clearly also is paying for support for parts of the stack becuase *they* removed free support for it...
-- / daniel.haxx.se || https://rock-solid.curl.dev -- Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-library Etiquette: https://curl.se/mail/etiquette.html
