Yo Hal! On Sat, 02 Feb 2019 00:49:48 -0800 Hal Murray via devel <devel@ntpsec.org> wrote:
> Gary said:
> >>> *tls1.3* Allow TLS1.3 connection.
> >> This does not feel scalable as new versions of TLS get created.
> > Yeah. You prolly guessed I stole of lot of the options from
> > elsewhere. This one also bugged me.
>
> The API for SSL has way to set the min protocol version.
> SSL_CTX_set_min_proto_version(ctx, TLS1_3_VERSION);
I see no number there. I see a token. That allows support for SSL as
well. What we do needs to be able to make that OpenSSL call. With that
token.
RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
g...@rellim.com Tel:+1 541 382 8588
Veritas liberabit vos. -- Quid est veritas?
"If you can’t measure it, you can’t improve it." - Lord Kelvin
pgpqczvDpxTMq.pgp
Description: OpenPGP digital signature
_______________________________________________ devel mailing list devel@ntpsec.org http://lists.ntpsec.org/mailman/listinfo/devel
