... the description is unclear (to me). Is it an improvement on EC support in ... httpd? libressl? Is ECDHE still supported? I do not want automatic selection of the curve. Not all curves are safe, and I need to select them.
Sent from ProtonMail Mobile On Tue, Aug 29, 2017 at 3:23 PM, Rupert Gallagher <[email protected]> wrote: >> Clean up the EC key/curve configuration handling. We no longer support ECDH >> and ECDHE can be disabled by removing ECDHE ciphers from the cipher list. As >> such, permanently enable automatic EC curve selection and generation, >> effectively disabling all of the configuration knobs. > > https://www.tedunangst.com/flak/post/openbsd-changes-of-note-627 > > The description
