Re: [exim-dev] [Bug 2298] tls_eccurve does not accept multip…

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Viktor Dukhovni
Date:  
À: exim-dev
Sujet: Re: [exim-dev] [Bug 2298] tls_eccurve does not accept multiple entries
On Sun, Sep 29, 2019 at 07:22:46PM +0000, admin--- via Exim-dev wrote:

> > I'm so far unconvinced that your use-case, for more-than-one but not the full
> > set, is likely to be needed by enough people to be worth adding the support.
>
> Well, it can be very convenient to manually add a modern curve as first choice
> and add less modern curves for compatibility reasons.


Specifying your own non-default (not "auto") curve list is more
often for "incompatibility" reasons. For the vast majority of users
the default is fine, and curating bespoke combinations rarely enhances
security.

-- 
    Viktor.