Menu
▾
▴
Re: [SM-imapproxy] [PATCH] TLS improvements
|
From: <ma...@ne...> - 2013-11-23 15:29:20
|
Emmanuel Dreyfus <ma...@ne...> wrote: > Using SSLv23_client_method() need to explicitely disable protocol > versions we do not want. But the problem is that we can only disable the > versions we know about. > > If we add the option you suggest, it will be unable to exclude TLSv1.3 > the day it will come. We can have this: tls_disable_tls1.0 false tls_disable_tls1.1 false tls_disable_tls1.2 false And the day TLSv1.3 appears, we update and add a new option. -- Emmanuel Dreyfus http://hcpnet.free.fr/pubz ma...@ne... |