Hubert Kario <hka...@redhat.com> writes: >So lets not repeat those mistakes
Exactly, there are more than enough new ones for 2.0-called-1.3 to make that we don't (necessarily) have to repeat existing ones (although I'm sure we will in some cases). And that's exactly my point, we're throwing away 20 years of refining TLS 1.x and more or less starting again with 2.0-called-1.3, with a whole new set of mistakes to make. I really don't want to spend the next 20 years patching all the holes that will be found in 2.0-called-1.3, I've already had enough of that for the 1.x version. TLS needs an LTS version that you can just push out and leave to its own devices, for the same reason that other products also have LTS versions, that lots of people have better things to do with their life than playing bugfix whack-a-mole for the duration of it. Peter. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
