[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#769279: Bug#769046: inn2: Allow for better TLS configurability



On Wed, November 12, 2014 14:29, Marco d'Itri wrote:
> On Nov 12, Thijs Kinkhorst <thijs@debian.org> wrote:
>
>> Can you remove SSLv3 from the default list?
> I do not know the implications wrt clients support.
> Christian, did you do any tests?
>
>> >> +=item I<tlscompression>
>> >> +Whether to enable or disable TLS compression support (boolean). The
>> >> +default is true.
>> Can we default this to false?
> This is not really useful because CRIME cannot be exploited over NNTP.

Indeed. So that's not really necessary then.


Thijs


Reply to: