For example, in 'cloud computing application' (which what I am build somewhat is), you want password protection/checking for checking at a different stage. However if you have to move TBs of data, you really don't want payload encryption, if needed there are better ways.
also, " ... cipher strings are complex and we're protecting people from inadvertently .. " .. that is why we have MS-windows and Mac-OS out there. Most Linux installations are work horses, mostly run by people that know what they are doing.
On 12/08/2015 12:20 PM, Eric Covener wrote:
On Tue, Dec 8, 2015 at 2:19 PM, Eric Covener <covener@xxxxxxxxx> wrote:On Tue, Dec 8, 2015 at 11:41 AM, Ron Croonenberg <ronc@xxxxxxxx> wrote:P.S: why not make it an option that can be configured and where the default 'setting' is "no NULL ciphers" ?I think the rational ie that the cipher strings are complex and we're protecting people from inadvertently enabling null and export ciphers.That part was probably obvious, the reason it's not configurable is that nobody has made it a priority to develop/test/review something better. --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
--------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|