Viktor Dukhovni <[email protected]> writes: >No, I really mean users. Sadly the Internet is infested with HOWOTO guides >with all sorts of "helpful" advice on how to configure your systems to be >more 'secure'. This means that in fact users (not browser users, but non- >developer operators of various systems) end up making all sorts ill-advised >tweaks to the default settings of various TLS-enabled applications (MTAs, >database clients and servers, IMAP servers, ...).
It's not just individual users but things like entire OS distros. My God you end up with some bizarro systemwide configs of OpenSSH and OpenSSL because whoever ended up as the designated security "expert" for WombatLinux thinks that all algorithms with odd parity in the name have been backdoored by the Illuminati. Peter. _______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
