On 2017-08-07 21:00:05 [+0200], Salvatore Bonaccorso wrote: > Hi Sebastian Hi Salvatore,
> Thanks for review. The reason I did that is indeed, to have a patch > which is most acceptable for upstream to include, independent on > Debian, although upstream since I initially pinged never replied to my > queries :-(. Thus as well the explicit version checking, since AFAIU > the use of the SSLv23_client_method is deprecated in favour of > TLS_client_method. … > Did I missunderstood something here? no, you are absolutely right. I just though SSLv23_client_method is something that currently works for everybody and is the smallest change given that old-stable Stretch won't be able to connect stable-Buster in approx. two years (so it coul be a candidate for s-p-u). However, yes, future proof, this is what the openssl project currently suggests. > Regards, > Salvatore Sebastian

