[jdev] manifesto 0.4

Dave Cridland dave at cridland.net
Wed Oct 30 10:42:09 UTC 2013


On Wed, Oct 30, 2013 at 12:44 AM, Thijs Alkemade <thijs at xnyhps.nl> wrote:

> So far, two tests have shown a server supported SSLv3 but not TLS 1.0,
> both for c2s to palemoon.net:
>

Drifting from the topic, I know, but just to confirm, this is only testing
what versions the servers handle in server-mode, correct? Given the nature
of the APIs, do we think this might be different to what versions a server
will negotiate given the opportunity in client-mode C2S?

I know this used to be (and might still be) the situation with TLS based
compression, but I can't think right now if it's likely to be the case with
cipher suites and TLS versions.

Dave.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.jabber.org/pipermail/jdev/attachments/20131030/671cfb3e/attachment.html>


More information about the JDev mailing list