[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #11528 [Tor]: Consider using âSSL_OP_CIPHER_SERVER_PREFERENCE

Subject: Re: [tor-bugs] #11528 [Tor]: Consider using âSSL_OP_CIPHER_SERVER_PREFERENCE
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 17 Apr 2014 14:33:44 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 17 Apr 2014 10:33:55 -0400
In-reply-to: <045.ebfb48f66575e0d90bca658ba36d1630@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <045.ebfb48f66575e0d90bca658ba36d1630@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#11528: Consider using âSSL_OP_CIPHER_SERVER_PREFERENCE
-------------------------+-------------------------------------------------
     Reporter:  nickm    |      Owner:
         Type:  defect   |     Status:  needs_review
     Priority:  normal   |  Milestone:  Tor: 0.2.5.x-final
    Component:  Tor      |    Version:
   Resolution:           |   Keywords:  tor-relay tls 024-backport nickm-
Actual Points:           |  review-0254
       Points:           |  Parent ID:
-------------------------+-------------------------------------------------
Changes (by nickm):

 * status:  new => needs_review


Comment:

 After discussion, I think that the right move here is to apply this flag.
 The new server cipher list fits our needs much better than the old client
 list or even the new one.

 Trivial patch in bug11528_024.  (Yes, I have confirmed that every OpenSSL
 we support has SSL_OP_CIPHER_SERVER_PREFERENCE)

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/11528#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #11528 [Tor]: Consider using âSSL_OP_CIPHER_SERVER_PREFERENCE
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #11482 [Tor Launcher]: Tor Launcher's bridge settings prompt is worded confusingly when there's no provided bridges
Next by Author: Re: [tor-bugs] #9957 [Tor]: Tor should consider stderr output of transport proxies
Previous by thread: Re: [tor-bugs] #11528 [Tor]: Consider using âSSL_OP_CIPHER_SERVER_PREFERENCE
Next by thread: Re: [tor-bugs] #11528 [Tor]: Consider using âSSL_OP_CIPHER_SERVER_PREFERENCE
Index(es):
- Author
- Thread