Re: Please consider backporting openssl 1.0.2 to jessie

To: Zack Weinberg <zackw@panix.com>, debian-backports@lists.debian.org
Subject: Re: Please consider backporting openssl 1.0.2 to jessie
From: Michael Gebetsroither <michael@mgeb.org>
Date: Wed, 25 May 2016 09:26:54 +0200
Message-id: <[🔎] 1e4a0463-49b9-e50b-7fd9-a5478633a7a7@mgeb.org>
In-reply-to: <[🔎] CAKCAbMgGXc+G0nkb3k2vdKGRi7CwHqbUN3H3p=VgQkoWwzs-2A@mail.gmail.com>
References: <[🔎] CAKCAbMgGXc+G0nkb3k2vdKGRi7CwHqbUN3H3p=VgQkoWwzs-2A@mail.gmail.com>

On 2016-05-14 17:53, Zack Weinberg wrote:

> Please consider backporting openssl 1.0.2 to jessie.  I know this is a
> difficult and labor-intensive package -- it should not be backported
> if there isn't manpower to keep up with security patches -- but it's
> badly needed for webservers, as only this version supports ALPN, which
> is now a prerequisite for http/2.0 with Chrome/ium; it was already
> necessary for IE, and Firefox is likely to follow suit in the near
> future.  See https://blog.chromium.org/2016/02/transitioning-from-spdy-to-http2.html
> for more details.

Yes, please consider backporting openssl 1.0.2 for ALPN support in jessie.
Without it there is no http/2 for jessie as browsers require ALPN for it.

Backporting only ALPN doesn't seem like a good idea:
https://git.openssl.org/gitweb/?p=openssl.git&a=search&h=HEAD&st=commit&s=ALPN

michael

Reply to:

Follow-Ups:
- Re: Please consider backporting openssl 1.0.2 to jessie
  - From: Alexander Wirt <formorer@formorer.de>

References:
- Please consider backporting openssl 1.0.2 to jessie
  - From: Zack Weinberg <zackw@panix.com>

Prev by Date: Re: samba 4.4.3 backports
Next by Date: Re: Please consider backporting openssl 1.0.2 to jessie
Previous by thread: Please consider backporting openssl 1.0.2 to jessie
Next by thread: Re: Please consider backporting openssl 1.0.2 to jessie
Index(es):
- Date
- Thread