Re: [exim-dev] SSLv2 and Exim 4.80

On 2012-05-28 at 15:43 +1000, Ted Cooper wrote:
> If it's new code, I would still think that it would want to go into an
> RC before 4.80 release just in case there's something unexpected in there.

Normally, I'd fully agree.

I've run with this change before, and the code change itself (as opposed
to all the documentation) is one comment and this:

#ifdef SSL_OP_NO_SSLv2
result |= SSL_OP_NO_SSLv2;
#endif

That is in the exact same place where we *used* to set the default to be
SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS. So having an option set there has
worked fine for many releases.

Test suite ran fine, no changes needed.

> Maybe make Wed another RC just to check that everything is still ok?
> Saves releasing 4.81 on Thursday.

I'll see how Monday goes. If it continues to form, then by the end of
Monday, something will have cropped up and I'll need a new RC anyway.

*sobs quietly*

Overhauling GnuTLS integration was opening a can of worms. It needed to
happen and has been on the to-do list for a few releases, but I'm the
sap who blinked first and opened it.

-Phil