[New-bugs-announce] [issue23481] SSL module should not offer RC4 based cipher suites for clients by default
Alex Gaynor
report at bugs.python.org
Thu Feb 19 01:54:56 CET 2015
New submission from Alex Gaynor:
In addition to the security concerns, it is now a violation of RFC7465 to offer a cipher suite with RC4 in a ClientHello: https://tools.ietf.org/html/rfc7465
----------
components: Library (Lib)
files: rc4.diff
keywords: patch
messages: 236202
nosy: alex, christian.heimes, dstufft, giampaolo.rodola, janssen, pitrou
priority: normal
severity: normal
status: open
title: SSL module should not offer RC4 based cipher suites for clients by default
versions: Python 2.7, Python 3.4, Python 3.5
Added file: http://bugs.python.org/file38176/rc4.diff
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue23481>
_______________________________________
More information about the New-bugs-announce
mailing list