Package: python3.10 Version: 3.10.4-1 Severity: normal X-Debbugs-Cc: jcris...@debian.org
Hi, Apparently python3.10 has its own ideas of cipher suites to use, overriding openssl defaults, local admin configuration in /etc/ssl/openssl.cnf, and user configuration through OPENSSL_CONF. That seems like a bad behaviour. IMO the local config should be respected, and if a stricter default for debian is desired then the proper place to set that is the openssl package, not individual language bindings. Thanks, Julien