On 25 July 2015 at 17:48, Salz, Rich <rs...@akamai.com> wrote: > "we" meaning browsers. "we" not being everyone who will use TLS 1.3 > > Ekr has pointed out a problem; if you connect with a protocol range and > proffer RC4, can we do anything about it except point out multiple times that > 1.3 servers MUST NOT accept it?
Agreed. But I'll point out that other users of TLS will likely not be doing fallback either, so they have to deal with offering what they support straight up. Prohibiting RC4 probably won't do anything more than what our existing efforts are doing already. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls