[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Bug-wget] Deprecate TLS 1.0 and TLS 1.1

From: Loganaden Velvindron
Subject: Re: [Bug-wget] Deprecate TLS 1.0 and TLS 1.1
Date: Tue, 19 Jun 2018 15:20:55 +0400

On Tue, Jun 19, 2018 at 3:18 PM, Tim Rühsen <address@hidden> wrote:
> On 06/19/2018 12:44 PM, Loganaden Velvindron wrote:
>> Hi All,
>> As per:
>> https://tools.ietf.org/html/draft-moriarty-tls-oldversions-diediedie-00
>> Attached is a tentative patch to disable TLS 1.0 and TLS 1.1 by
>> default. No doubt that this will cause some discussions, I'm open to
>> hearing all opinions on this.
> Good idea for the public internet.
> IMO there are too many 'internal' devices / hardware that are not
> up-to-date and impossible to update.
> What about amending the patch so that we apply it only to public IP
> addresses ?

This sounds reasonable.

> And even then - we should not just 'fail' on older servers but tell the
> user why wget fails and what to do about it. In the end, the user is
> responsible and in control.

Yes, giving some info to the user would be good too.
I will update the patch.

> Regards, Tim

reply via email to

[Prev in Thread] Current Thread [Next in Thread]