Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:71926 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 45662 invoked from network); 1 Feb 2014 17:47:36 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 1 Feb 2014 17:47:36 -0000 Authentication-Results: pb1.pair.com header.from=rdlowrey@gmail.com; sender-id=pass Authentication-Results: pb1.pair.com smtp.mail=rdlowrey@gmail.com; spf=pass; sender-id=pass Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.213.180 as permitted sender) X-PHP-List-Original-Sender: rdlowrey@gmail.com X-Host-Fingerprint: 209.85.213.180 mail-ig0-f180.google.com Received: from [209.85.213.180] ([209.85.213.180:34897] helo=mail-ig0-f180.google.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id 84/A1-30967-6333DE25 for ; Sat, 01 Feb 2014 12:47:35 -0500 Received: by mail-ig0-f180.google.com with SMTP id m12so1534025iga.1 for ; Sat, 01 Feb 2014 09:47:31 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=4Rrtl+16AMvBp+3RK52dk8yJQclBKCL+8pLwHJfvggM=; b=cyhJ672VKzXcefY1XqdCicNmkQfYNVf4ijkhaed0MOvRg6pug62erflks/lAAmw2hR RLtYNh2WLAdawbtKlWlygl3CP4fS0N3YpPIqZ53sTwFjunD2TCyzSTHlTN3SANEXkyWy AdVISAl09fQ0X/IxK6hxPfZKhBOTT/ZhXssDm/NpuS8qCAH5h2piI6GBLiacOLKTy7yR Z0hpdc/ulK1YO4TeQBZukfDJXd/mTy7pRVXpCR8ySx0q/l3iI8F6FA5LG1IktKx4pm9w WibbBR1BZcwdDY1FPG8OtEeWYcg4rrH5xIP9W3hDegd1EDwj8ao+zek7onynHZqqr05v VUJg== MIME-Version: 1.0 X-Received: by 10.50.225.135 with SMTP id rk7mr4249384igc.49.1391276851815; Sat, 01 Feb 2014 09:47:31 -0800 (PST) Received: by 10.50.29.140 with HTTP; Sat, 1 Feb 2014 09:47:31 -0800 (PST) In-Reply-To: References: <824758DB-57D8-4B4B-BECD-E1F12531FDE0@rouvenwessling.de> Date: Sat, 1 Feb 2014 12:47:31 -0500 Message-ID: To: Yasuo Ohgaki Cc: =?ISO-8859-1?Q?Rouven_We=DFling?= , =?ISO-8859-1?Q?P=E1draic_Brady?= , "internals@lists.php.net" Content-Type: multipart/alternative; boundary=f46d04289de3896c3104f15be25a Subject: Re: [PHP-DEV] Improved TLS Defaults From: rdlowrey@gmail.com (Daniel Lowrey) --f46d04289de3896c3104f15be25a Content-Type: text/plain; charset=ISO-8859-1 > I finished the implementation patch with tests today and will > update the RFC either this evening or tomorrow with a fully mature proposal Greetings, internals. As promised, the mature proposal for Improved TLS Defaults is now live: https://wiki.php.net/rfc/improved-tls-defaults If you're short on time I've added a TL;DR section: https://wiki.php.net/rfc/improved-tls-defaults#tldr_definitive_progress There are a number of improvements and changes from the previous iterations as well as code examples. So, even if you've read earlier versions of the RFC I would encourage you to take a few minutes to read this (final?) version. The full patch with tests is now available and can be dropped directly into the current 5.6 branch: https://wiki.php.net/rfc/improved-tls-defaults#patches_and_tests Thanks for your time and feedback. A vote is planned for Feb. 11, so please pose any questions or suggestions you may have in the coming days to avoid any hiccups during the actual voting process. --f46d04289de3896c3104f15be25a--