Re: Removing SSL 3.0/Poodle from Jim Manico on 2014-10-21 (ietf-http-wg@w3.org from October to December 2014)

From: Jim Manico <jim@manico.net>
Date: Tue, 21 Oct 2014 03:22:33 -0400
To: Martin Thomson <martin.thomson@gmail.com>
Cc: HTTP Working Group <ietf-http-wg@w3.org>
Message-Id: <B8B01134-A9A3-46B8-B15C-781C44556643@manico.net>

My apologies, excellent news!

Aloha,
--
Jim Manico
@Manicode
(808) 652-3805

> On Oct 21, 2014, at 2:53 AM, Martin Thomson <martin.thomson@gmail.com> wrote:
> 
>> On 20 October 2014 23:22, Jim Manico <jim@manico.net> wrote:
>> Now that SSL 3.0 is dead due to POODLE, is there any chance it can be removed from the HTTP2 spec? It's security theatre at best right now.
> 
> It's already gone.  As is TLS 1.0 and 1.1.

Received on Tuesday, 21 October 2014 07:23:00 UTC