On 03/04/2015 07:10 AM, Kurt Roeckx wrote: > On Tue, Mar 03, 2015 at 10:45:41PM +0200, Török Edwin wrote: >> can you consider disabling the export suites in OpenSSL like LibreSSL did, >> and >> like you've done for SSLv3? > > I do want to remove the export ciphers from the DEFAULT cipher > string in all released branches. I have patches upstream to do > that, and to completly remove support for export ciphers in > master.
Nice! > >> [2] https://github.com/libressl- >> portable/openbsd/commit/9e3c8206e0f32386e79956dfa4a26bbfdb3dd10d >> [4] https://github.com/libressl- >> portable/openbsd/commit/9e3c8206e0f32386e79956dfa4a26bbfdb3dd10d > > That's the same link. Sorry, the other link was supposed to be this that removes the ephemeral RSA: https://github.com/libressl-portable/openbsd/commit/b0a3dc11e2f40da00441447a359ed16e8c578e44 Best regards, --Edwin -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
