[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#774299: wheezy-pu: openssl: disable SSLv3 by default



On Sun, Jan 18, 2015 at 11:59:05AM +0100, Moritz Mühlenhoff wrote:
> On Wed, Dec 31, 2014 at 04:41:29PM +0100, Kurt Roeckx wrote:
> > On Wed, Dec 31, 2014 at 02:00:23PM +0000, Adam D. Barratt wrote:
> > > Control: tags -1 + moreinfo
> > > 
> > > On Wed, 2014-12-31 at 13:52 +0100, Kurt Roeckx wrote:
> > > > I would like to disable SSLv3 by default in wheezy.
> >
> > > Do we know how well other packages in wheezy cope with that? (I'm going
> > > to guess "not as well as in jessie".)

We could make updated binaries available for testing and ask people
to run them for a while?

> > One package that might be affected by this change is that python
> > has a test suite that tries all possible combinations of settings
> > and the test suite is probably going to fail because it's going to
> > expect to be able to set up an SSLv3 connection.
> 
> I will rebuild python in wheezy to check that.

A rebuild of python2.7 with a patched openssl went fine.

Cheers,
        Moritz


Reply to: