[Pkg-openssl-devel] Bug#875423: openssl: Please re-enable TLS 1.0 and TLS 1.1 (at least in testing)
Philip Hands
phil at hands.com
Mon Sep 11 14:52:57 UTC 2017
Raphaël Hertzog <hertzog at debian.org> writes:
...
> Or at least I would like a system-wide flag (in a configuration file?) to
> let me re-enable old protocols easily.
Just because I haven't seen anyone else suggest it:
Would it be practical to have the normal packages drop TLS 1.0/1.1
support as currently planned, but have an alternative set of packages
(called openssl-obsolescent, or openssl-tls-flawed, or whatever) with
the TLS 1.0/1.1 support re-enabled, so that one could do the migration
away from TLS 1.0/1.1, but still allow people who notice problems to
deal with them by choosing to install this other set of packages?
Cheers, Phil.
--
|)| Philip Hands [+44 (0)20 8530 9560] HANDS.COM Ltd.
|-| http://www.hands.com/ http://ftp.uk.debian.org/
|(| Hugo-Klemm-Strasse 34, 21075 Hamburg, GERMANY
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 832 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-openssl-devel/attachments/20170911/7edfa9f0/attachment.sig>
More information about the Pkg-openssl-devel
mailing list