On 2017-08-07 21:00:05 [+0200], Salvatore Bonaccorso wrote:
> Hi Sebastian
Hi Salvatore,

> Thanks for review. The reason I did that is indeed, to have a patch
> which is most acceptable for upstream to include, independent on
> Debian, although upstream since I initially pinged never replied to my
> queries :-(. Thus as well the explicit version checking, since AFAIU
> the use of the SSLv23_client_method is deprecated in favour of
> TLS_client_method. 
…
> Did I missunderstood something here?
no, you are absolutely right. I just though SSLv23_client_method is
something that currently works for everybody and is the smallest change
given that old-stable Stretch won't be able to connect stable-Buster in
approx. two years (so it coul be a candidate for s-p-u).

However, yes, future proof, this is what the openssl project currently
suggests.

> Regards,
> Salvatore

Sebastian

Reply via email to