> Nelson B wrote: > > Please read appendix E.2 of the SSL3 specification and TLS standard. > > (It's the same appendix and same text in both documents). > > SSL3 spec: http://wp.netscape.com/eng/ssl3/draft302.txt > > TLS standard: http://www.rfc-editor.org/rfc/rfc2246.txt
Something I've been meaning to ask - is there any particular reason to continue to discuss SSLv3 when instead we could just talk about and promote TLSv1 ? That is, is there anything in the two specs and the deployed implementations that might make one or the other incompatible? Now, this is a completely minor and forgettable question - It is clearly much more important to seek&destroy SSLv2 wherever she may be found so as to get to the possibility of running more vhosts and much more TLS. I wouldn't want to derail that, but I was curious briefly... iang -- Advances in Financial Cryptography: https://www.financialcryptography.com/mt/archives/000458.html _______________________________________________ Mozilla-security mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-security
