That's a good point on the curve configuration for older OpenSSL. I think backwards compatibility is a good question both here, and for the list of default SSL ciphers.
With the RHEL6 end-of-life approaching, is it reasonable to leave SSL settings unchanged for EL6 and before, and use the more secure SSL defaults for EL7 and beyond? That'll be a trivial change to the code.
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or unsubscribe.
[
{
"@context": "http://schema.org",
"@type": "EmailMessage",
"potentialAction": {
"@type": "ViewAction",
"target": "https://github.com/xrootd/xrootd/pull/1151?email_source=notifications\u0026email_token=AA7NRDQ7A3AMX4LPUEMBZK3RGZURFA5CNFSM4LDFMJQ2YY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEOMF6IA#issuecomment-597188384",
"url": "https://github.com/xrootd/xrootd/pull/1151?email_source=notifications\u0026email_token=AA7NRDQ7A3AMX4LPUEMBZK3RGZURFA5CNFSM4LDFMJQ2YY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEOMF6IA#issuecomment-597188384",
"name": "View Pull Request"
},
"description": "View this Pull Request on GitHub",
"publisher": {
"@type": "Organization",
"name": "GitHub",
"url": "https://github.com"
}
}
]
Use REPLY-ALL to reply to list
To unsubscribe from the XROOTD-DEV list, click the following link:
https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1