This issue tracker has been migrated to GitHub ,
and is currently read-only.
For more information,
see the GitHub FAQs in the Python's Developer Guide.
| Author | naif |
|---|---|
| Recipients | naif |
| Date | 2011年12月19日.10:44:02 |
| SpamBayes Score | 0.006774416 |
| Marked as misclassified | No |
| Message-id | <1324291443.18.0.0191846315359.issue13635@psf.upfronthosting.co.za> |
| In-reply-to |
| Content | |
|---|---|
The list of Ciphers for Python SSL binding for OpenSSL cannot be ordered in a specific list of preference. This is a requirement for strict security environment where the ordered cipher list it's very important. Apache support the ordering of ciphers trough the configuration of SSLHonorCipherOrder: http://www.carbonwind.net/blog/post/Setting-the-preferred-cipher-suite-on-Apache-22x.aspx Also Internet Explorer 7 support Ciphers order configuration: https://blogs.technet.com/b/steriley/archive/2007/11/06/changing-the-ssl-cipher-order-in-internet-explorer-7-on-windows-vista.aspx?Redirected=true Not having the ordered cipher list doesn't allow Python SSL stack configuration to be compliant with high security environment, de-facto representing a security vulnerability. We suggest to fix the issue of lacking that feature. |
|
| History | |||
|---|---|---|---|
| Date | User | Action | Args |
| 2011年12月19日 10:44:03 | naif | set | recipients: + naif |
| 2011年12月19日 10:44:03 | naif | set | messageid: <1324291443.18.0.0191846315359.issue13635@psf.upfronthosting.co.za> |
| 2011年12月19日 10:44:02 | naif | link | issue13635 messages |
| 2011年12月19日 10:44:02 | naif | create | |