On 7 March 2016 at 23:02, Hubert Kario <hka...@redhat.com> wrote: > well, if some people don't care about their implementation being > fingerprintable, let them be, but there should but at least a > recommendation what to do if you want to avoid that.
I'd be very surprised if this added anything to the fingerprinting entropy already present in TLS implementations. You can't use this sort of thing to distinguish one user of NSS from another NSS user. BTW, I'm pretty much not willing to volunteer to review the patch that made NSS less fingerprintable as NSS. I'm pretty sure that involves replacing NSS with OpenSSL. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
