Security problems: CRIME, BREACH, and other crud. Compression was slapped into TLS without any thought to the consequences or side effects. - effecively doing this in TLS should not be considered a mature protocol, and nobody who takes security seriously should use that until it is - if ever.
On Sun, Aug 3, 2014 at 9:33 AM, Dmitry Eremin-Solenikov <[email protected]> wrote: > Hello, > > One of RFCs defines GOST usage with CMS messages. While testing, I > noticed that CMS is disabled in LibreSSL. Is it just 'not cleaned' or > is there another reason to have it disabled? > > -- > With best wishes > Dmitry > > -- > With best wishes > Dmitry >
