On 2017-08-27 12:46:59 [+0200], To Timo Sirainen wrote:
> On 27 August 2017 08:32:06 CEST, Timo Sirainen wrote:
> >>DEF(SET_STR, ssl_protocols),
> >>DEF(SET_STR, ssl_cert_username_field),
> >>DEF(SET_STR, ssl_crypto_device),
> >> + DEF(SET_STR, ssl_lowest_version),
> >
> >Does it real
On 2017-08-27 13:47, Aki Tuomi wrote:
On 2017-08-27 13:46, Sebastian Andrzej Siewior wrote:
On 27 August 2017 08:32:06 CEST, Timo Sirainen wrote:
DEF(SET_STR, ssl_protocols),
DEF(SET_STR, ssl_cert_username_field),
DEF(SET_STR, ssl_crypto_device),
+DEF(SET_STR, ssl_lowest_ve
On 2017-08-27 13:46, Sebastian Andrzej Siewior wrote:
On 27 August 2017 08:32:06 CEST, Timo Sirainen wrote:
DEF(SET_STR, ssl_protocols),
DEF(SET_STR, ssl_cert_username_field),
DEF(SET_STR, ssl_crypto_device),
+ DEF(SET_STR, ssl_lowest_version),
Does it really re
On 27 August 2017 08:32:06 CEST, Timo Sirainen wrote:
>> DEF(SET_STR, ssl_protocols),
>> DEF(SET_STR, ssl_cert_username_field),
>> DEF(SET_STR, ssl_crypto_device),
>> +DEF(SET_STR, ssl_lowest_version),
>
>Does it really require a new setting? Couldn't it use the existing
>ssl_pr
On 2017-08-27 09:32, Timo Sirainen wrote:
On 26 Aug 2017, at 19.47, Sebastian Andrzej Siewior
wrote:
The openssl library in Debian unstable (targeting Buster) supports
TLS1.2 by default. The library itself supports also TLS1.1 and TLS1.0.
If the admin decides to also support TLS1.[01] users
On 26 Aug 2017, at 19.47, Sebastian Andrzej Siewior
wrote:
>
> The openssl library in Debian unstable (targeting Buster) supports
> TLS1.2 by default. The library itself supports also TLS1.1 and TLS1.0.
> If the admin decides to also support TLS1.[01] users he can then enable
> the lower protoco
The openssl library in Debian unstable (targeting Buster) supports
TLS1.2 by default. The library itself supports also TLS1.1 and TLS1.0.
If the admin decides to also support TLS1.[01] users he can then enable
the lower protocol version in case the users can't update their system.
Signed-off-by: S
