|
From: | Ángel González |
Subject: | Re: [Bug-wget] [PATCH] Allow to redefine ciphers list for OpenSSL |
Date: | Fri, 18 Jul 2014 23:42:50 +0200 |
User-agent: | Thunderbird |
On 17/07/14 13:49, Tomas Hozza wrote:
I agree. The patch didn't take any configuration possibility from the user. The users would be able to configure whatever in the same way they were before. Please really see some of those patches I sent. The discussion was little bit confusing at some points ~ like the intentions were interpreted differently. Regards,
I still strongly oppose to the patch. If the user configures wget to only use Perfect Forward Security, and your patch makes wget connect to a server not using it you
are overriding user configuration (in the weakening direction). See my last email for details.Patch v3 also seem to coalesce the different options of --secure-protocol if using
GnuTLS, which IMHO doesn't make sense either. PS: s/cipers/ciphers/ in v3
[Prev in Thread] | Current Thread | [Next in Thread] |