[issue3597] Allow application developers to select ciphers, and default to strong in ssl lib
Bill Janssen
report at bugs.python.org
Thu Sep 4 03:14:26 CEST 2008
Bill Janssen <bill.janssen at gmail.com> added the comment:
I'm afraid you're ahead of me in knowledge here. I've experimented with
the ciphers a bit, but there seem to be various compatibility issues. I
finally decided to let the OpenSSL folks and various standard groups
worry about this; the designation of SSL 2, SSL 3, or TLS 1, is supposed
to select the appropriate cipher groups.
Now, as to making the default be different: we discussed this on
python-dev a bit. I think it might make sense to default to TLS 1, even
at the expense of compatibility, but we (the two or three of us actually
discussing it) finally decided to go with what the current Python
socket.ssl module used.
----------
nosy: +janssen
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue3597>
_______________________________________
More information about the Python-bugs-list
mailing list