On 4 May 2015, at 22:26, William A Rowe Jr <[email protected]> wrote: > > It seems to me that SAFE at this time is TLSv1.2. > > It also seems to me that the first problem to solve is to ensure if the user > removes SSLv3 (+/- TLSv1.0) from their openssl installed binary, that we > simply respect that. In that case, 'SSLProtocol all' should be just the > remaining supported TLSv1.1 and TLSv1.2 protocols, or TLSv1.2-only.
FWIW, I agree. -- Tim Bannister – [email protected]
