Skip to content
This repository was archived by the owner on Jan 13, 2021. It is now read-only.
This repository was archived by the owner on Jan 13, 2021. It is now read-only.

Cipher Checking #64

Open
Open
Cipher Checking#64
Labels
Bug
@Lukasa

Description

@Lukasa
Lukasa
opened on Jun 23, 2014

Setting ourselves to a really restricted cipher list as mandated by the specification breaks on Ubuntu 12.04 because Ubuntu are fucking terrible. I've spent all of yesterday trying to fix this and come up blank, so I'm going to take a new option:

  1. Add a HTTP20Connection property called 'strict TLS' (or similar), defaulting to True.
  2. In HTTP20Connection.connect(), if that parameter is True, check the selected cipher.

Unfortunately, I can't do this yet because PyOpenSSL doesn't support checking the used cipher until 0.15, which isn't out yet. Sigh.

Metadata

Metadata

Assignees

No one assigned

    Labels

    Bug

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions