naif <n...@globaleaks.org> added the comment: Well, my concept is that it would be reasonable to use what people consider secure.
SSL/TLS are security protocol. Some combination of the protocol configuration (ciphers/hash/key exchange) are: - known to be insecure - known to be secure - known to be unused (like SEED, only used in South Korea by military applications) or PSK with almost no adoption - Unknown (like CAMELIA, i don't find a single software using it) The concept i would propose is to choose the ciphers that "known to be secure" by disabling everything else. ---------- _______________________________________ Python tracker <rep...@bugs.python.org> <http://bugs.python.org/issue13636> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: http://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
