Dave Garrett wrote:> > It's wrong, though. If a server rejects a client connection because the > server only supports RC4 and the client doesn't, the correct error for the > server to return is "insufficient_security". If you invert the meaning, I > guess the server has insufficient security, but it's not the same. >
Well that was kinda what I was getting at, yea :) > If we're ok with a complete change, then I'll just go with the > "unsupported_X" format as there's already an "unsupported_certificate" and > "unsupported_extension". > > I'll stick a commit for this into my ever growing PR #201 in a bit. > Fine with me - didn't want to bikeshed here. Aaron
signature.asc
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
