httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Tim Bannister <is...@c8h10n4o2.org.uk>
Subject Re: Disable SSLv3 by default
Date Mon, 04 May 2015 22:07:36 GMT
On 4 May 2015, at 22:26, William A Rowe Jr <wrowe@rowe-clan.net> wrote:
> 
> It seems to me that SAFE at this time is TLSv1.2.
>  
> It also seems to me that the first problem to solve is to ensure if the user removes
SSLv3 (+/- TLSv1.0) from their openssl installed binary, that we simply respect that.  In
that case, 'SSLProtocol all' should be just the remaining supported TLSv1.1 and TLSv1.2 protocols,
or TLSv1.2-only.

FWIW, I agree.

-- 
Tim Bannister – isoma@c8h10n4o2.org.uk


Mime
View raw message