https://issues.apache.org/bugzilla/show_bug.cgi?id=53394
Mark Thomas <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution|--- |WONTFIX --- Comment #3 from Mark Thomas <[email protected]> --- Neither SSLv2 nor SSLv3 are now enabled by default. Since the user has to explicitly configure a connector to enable either of these (and the docs that explain how to configure this make clear that both are considered insecure), I don't see a need to log a warning any more. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
