Agreed. My socket suite *has* to support 0.9.8, due to one of my larger customers who cannot upgrade their system (would take them down for weeks). The programs are air-gapped, so they do not worry about outside hackers. But for security reasons - they must move date from machine to machine encrypted - xor would be fine in their requirements.
On Fri, Apr 5, 2019 at 3:28 AM Michael Van Canneyt <mich...@freepascal.org> wrote: > > > On Thu, 4 Apr 2019, thaddy wrote: > > > I have internally deprecated some SSL protocols since they no longer > > work because they are no longer compiled in. > > I also internally changed the bottom line to tls 1.2 > > Would it be OK to provide that as a patch? Or would you consider more > > things are necessary than just deprecated and default? > > Just deprecate and default is enough. Don't remove anything. You never know > in what environment a program must run: it can be that it must be able to > talk to an old server with no support for the newer protocols. (or vice > versa) > In each case, the openssl unit must be reviewed to check for 1.1 of > openssl. > > Michael. > _______________________________________________ > fpc-devel maillist - fpc-devel@lists.freepascal.org > http://lists.freepascal.org/cgi-bin/mailman/listinfo/fpc-devel >
_______________________________________________ fpc-devel maillist - fpc-devel@lists.freepascal.org http://lists.freepascal.org/cgi-bin/mailman/listinfo/fpc-devel
