On Tue, Dec 8, 2015 at 2:19 PM, Eric Covener <covener@xxxxxxxxx> wrote: > On Tue, Dec 8, 2015 at 11:41 AM, Ron Croonenberg <ronc@xxxxxxxx> wrote: >> P.S: why not make it an option that can be configured and where the default >> 'setting' is "no NULL ciphers" ? > > I think the rational ie that the cipher strings are complex and we're > protecting people from inadvertently enabling null and export ciphers. That part was probably obvious, the reason it's not configurable is that nobody has made it a priority to develop/test/review something better. --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx