[issue27850] Remove 3DES from cipher list (sweet32 CVE-2016-2183)
Christian Heimes
report at bugs.python.org
Tue Sep 6 14:34:57 EDT 2016
Christian Heimes added the comment:
Donald, my OpenSSL 1.1.0 patch hasn't landed in 3.3 and 3.4 either. It's a bit mood to discuss ChaCha20 w/o OpenSSL 1.1.0. Rich Salz doesn't want to include ChaCha20 suites in 1.0.2 upstream. You either have to patch and build OpenSSL yourself or use LibreSSL.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue27850>
_______________________________________
More information about the Python-bugs-list
mailing list