On 12/02/2010 11:56:56 AM, Samuli Seppänen wrote:
> Hi Blaise,
>
> Actually we discussed the floating-tls patch in last community
> meeting:
>
> <http://thread.gmane.org/gmane.network.openvpn.devel/4189>
>
The discussion ends with deciding that the feature be
"opt-in", I presume via a compile time option.
Why isn't it "opt-in" if enabled with a runtime command line
flag? If you don't use the flag why should the
resulting session be any less secure?
I have no problem having to enable a compile time
flag for new feature testing, and then having
the flag default to "on" in a later release.
Is that what we're taking about here?
Karl <k...@meme.com>
Free Software: "You don't pay back, you pay forward."
-- Robert A. Heinlein
