Bug#769279: Bug#769046: inn2: Allow for better TLS configurability
On Wed, November 12, 2014 14:29, Marco d'Itri wrote:
> On Nov 12, Thijs Kinkhorst <thijs@debian.org> wrote:
>
>> Can you remove SSLv3 from the default list?
> I do not know the implications wrt clients support.
> Christian, did you do any tests?
>
>> >> +=item I<tlscompression>
>> >> +Whether to enable or disable TLS compression support (boolean). The
>> >> +default is true.
>> Can we default this to false?
> This is not really useful because CRIME cannot be exploited over NNTP.
Indeed. So that's not really necessary then.
Thijs
Reply to: