[Pkg-ace-devel] SSLv2
Pau Garcia i Quiles
pgquiles at elpauer.org
Sun May 8 11:00:43 UTC 2011
On Sat, May 7, 2011 at 9:33 AM, Thomas Girard <thomas.g.girard at free.fr>wrote:
@Pau: what was the rationale for avoiding solution c)?
>
I only looked at the possibility for a very short time but I did not see how
to "cleanly fail" because the default was not fail but SSLv3. I'd need to
look at the code again but I will not have time at least in the next few
days :-/
> @Johnny: any opinion on this?
>
>
There are no comments on the bug on the ACE bugtracker :-/
http://bugzilla.dre.vanderbilt.edu/show_bug.cgi?id=3958
If we don't reach consensus I guess I'll post this question to
> devo-group@
>
>
If the solution is not "obvious", we should certainly ask the ACE
developers. Also, is there a policy on this on Debian? (AFAIK no guidelines
have been provided for what to do when SSLv2 is the only protocol the other
side allows)
--
Pau Garcia i Quiles
http://www.elpauer.org
(Due to my workload, I may need 10 days to answer)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-ace-devel/attachments/20110508/728a2b04/attachment.htm>
More information about the Pkg-ace-devel
mailing list