From mboxrd@z Thu Jan  1 00:00:00 1970
From: Peter =?utf-8?q?M=C3=BCller?= <peter.mueller@ipfire.org>
To: development@lists.ipfire.org
Subject:
 Re: [PATCH] OpenSSL: lower priority for CBC ciphers in default cipherlist
Date: Mon, 10 Jun 2019 19:30:00 +0000
Message-ID: <062d3808-bde7-ed93-520d-18faf848d49e@ipfire.org>
In-Reply-To: <00CB5748-463D-4828-AC5E-AC5083BC6E68@ipfire.org>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============4393771244078596759=="
List-Id: <development.lists.ipfire.org>

--===============4393771244078596759==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit

Hello Michael,

> Do you intend to do more changes to let’s say the Apache cipher suites?
At the moment, no. I plan to remove AES-CBC at the end of the year
or if more dangerous vulnerabilities show up; I am afraid we cannot
do this for OpenVPN/IPsec GUIs as well.

Thanks, and best regards,
Peter Müller
-- 
The road to Hades is easy to travel.
	-- Bion of Borysthenes

--===============4393771244078596759==--