Bug#769279: Bug#769046: inn2: Allow for better TLS configurability

To: "Marco d'Itri" <md@Linux.IT>
Cc: 769046@bugs.debian.org, 769279@bugs.debian.org, "christian mock" <cm@tahina.priv.at>
Subject: Bug#769279: Bug#769046: inn2: Allow for better TLS configurability
From: "Thijs Kinkhorst" <thijs@debian.org>
Date: Wed, 12 Nov 2014 14:41:58 +0100
Message-id: <[🔎] 57e8635742a2dde3b9122e11d2b50aa3.squirrel@aphrodite.kinkhorst.nl>
Reply-to: "Thijs Kinkhorst" <thijs@debian.org>, 769279@bugs.debian.org
In-reply-to: <[🔎] 20141112132907.GA11034@bongo.bofh.it>
References: <20141110233117.18170.42905.reportbug@erl.tahina.priv.at> <[🔎] 20141112115559.GA8544@bongo.bofh.it> <[🔎] e5c25d376e8b320619f815bcb934f4fe.squirrel@aphrodite.kinkhorst.nl> <[🔎] 20141112132907.GA11034@bongo.bofh.it>

On Wed, November 12, 2014 14:29, Marco d'Itri wrote:
> On Nov 12, Thijs Kinkhorst <thijs@debian.org> wrote:
>
>> Can you remove SSLv3 from the default list?
> I do not know the implications wrt clients support.
> Christian, did you do any tests?
>
>> >> +=item I<tlscompression>
>> >> +Whether to enable or disable TLS compression support (boolean). The
>> >> +default is true.
>> Can we default this to false?
> This is not really useful because CRIME cannot be exploited over NNTP.

Indeed. So that's not really necessary then.


Thijs

Reply to:

References:
- Re: Bug#769046: inn2: Allow for better TLS configurability
  - From: md@Linux.IT (Marco d'Itri)
- Bug#769279: Bug#769046: inn2: Allow for better TLS configurability
  - From: "Thijs Kinkhorst" <thijs@debian.org>
- Bug#769279: Bug#769046: inn2: Allow for better TLS configurability
  - From: md@Linux.IT (Marco d'Itri)

Prev by Date: Permission to upload tcl8.6/tk8.6 8.6.3-1
Next by Date: Bug#768786: unblock: wxglade/0.6.8-2.2
Previous by thread: Bug#769279: Bug#769046: inn2: Allow for better TLS configurability
Next by thread: Bug#769279: Bug#769046: inn2: Allow for better TLS configurability
Index(es):
- Date
- Thread