- From: Martin Nilsson <nilsson@opera.com>
- Date: Thu, 06 Nov 2014 02:17:24 +0100
- To: ietf-http-wg@w3.org
On Thu, 06 Nov 2014 01:02:23 +0100, Mark Nottingham <mnot@mnot.net> wrote: > > So, maybe the path forward would be to leave the cipher suite > requirements at MUST -- putting the responsibility for conforming on the > administrator in some deployments -- but reduce the requirement to > generate INADEQUATE_SECURITY to a SHOULD, thereby letting an > implementation that doesn't have the ability (or desire) to enforce off > the hook. > > Need to think through the implications of that, but WDYT? > I'll echo Mikes rebasing comment. In my other email I agree with you... /Martin Nilsson -- Using Opera's mail client: http://www.opera.com/mail/
Received on Thursday, 6 November 2014 01:17:47 UTC