On 9 January 2016 at 10:18, Clint Pachl <[email protected]> wrote: > With that said, I do respect Gilles decision for not implementing knobs. > What do you guys think? What are some solutions? > > ​Seems to me that if there can be a one-size-fits-all then a knob is not needed. However, it also looks like there is no one-size-fits-all when it comes to supporting old protocols and/or ciphers. For some use cases compatibility might be more important, for other use cases security might be more important.
In short, it seems to me that the only way to make everyone happy is a knob. Personally I would love to set supported protocols and ciphers system wide once and have all software use those settings, but that's outside the scope of this issue. -- Maarten
