Misc/NEWS.d/next/Security/2018-11-20-16-50-03.bpo-28043.qOoOqW.rst · b27e30553c856394fcadecd43e24ccf62254907e · Kirill Smelkov / cpython

[2.7] bpo-28043: improved default settings for SSLContext (GH-10608) · b8eaec69

stratakis authored Feb 15, 2019

The options OP_NO_COMPRESSION, OP_CIPHER_SERVER_PREFERENCE,
OP_SINGLE_DH_USE, OP_SINGLE_ECDH_USE, OP_NO_SSLv2 (except
for PROTOCOL_SSLv2), and OP_NO_SSLv3 (except for PROTOCOL_SSLv3)
are set by default. The initial cipher suite list contains only
HIGH ciphers, no NULL ciphers and MD5 ciphers (except for PROTOCOL_SSLv2).

(cherry picked from commit 358cfd42)

b8eaec69

2018-11-20-16-50-03.bpo-28043.qOoOqW.rst 183 Bytes

Replace 2018-11-20-16-50-03.bpo-28043.qOoOqW.rst