Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:99235
Return-Path: <jakub.php@gmail.com>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 57120 invoked from network); 29 May 2017 20:01:04 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 29 May 2017 20:01:04 -0000
Authentication-Results: pb1.pair.com header.from=jakub.php@gmail.com; sender-id=pass
Authentication-Results: pb1.pair.com smtp.mail=jakub.php@gmail.com; spf=pass; sender-id=pass
Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.161.174 as permitted sender)
X-PHP-List-Original-Sender: jakub.php@gmail.com
X-Host-Fingerprint: 209.85.161.174 mail-yw0-f174.google.com  
Received: from [209.85.161.174] ([209.85.161.174:32820] helo=mail-yw0-f174.google.com)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id 3B/36-34073-EFD7C295 for <internals@lists.php.net>; Mon, 29 May 2017 16:01:02 -0400
Received: by mail-yw0-f174.google.com with SMTP id p73so31975164ywp.0
        for <internals@lists.php.net>; Mon, 29 May 2017 13:01:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=mime-version:sender:in-reply-to:references:from:date:message-id
         :subject:to:cc;
        bh=zTIVRa3WnldCF9m3JnxjZyVxDDyay2cNQZI1Tbafelc=;
        b=IAWsN8Qk0S+oFndxhTcpmKic6DKLq4XeU1PoJHj3u05sinuYkrPfbGcqvOPRPYZqc6
         W9R6u2RQEHOckx2nx0uvqx83vl4xMeOF793HNZfOmFX/itG0GKnjODE+GBDKLZq6fHNc
         ISLABgBQBw7D0v+3js7qUtpAECi4dTMpYe+aQqT7hh2EzPX/GZnw8r8qgmQHmhAZ+qgM
         Jo+UbWycDlTDRkBVajrPVaYKDcuP+2A7XI/H+kBbVYKdr7q0aqOUqDBQSOGyfyDcfabC
         rrqv6mdKeTdYFlCRy16RgcVISJTRpmh1skNXSTRzNpjN18C1B8Vg0/+QevXI3Whhc1Qs
         XwJA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:sender:in-reply-to:references:from
         :date:message-id:subject:to:cc;
        bh=zTIVRa3WnldCF9m3JnxjZyVxDDyay2cNQZI1Tbafelc=;
        b=e3uRJBfnq+RashAVLSAj3pFJhB6itpIqXgpocpgyqyO6v2/ZRmmOxeVdLEN7NzfTAt
         OS6Thd9t6lmGfrCTWd4+9FsuNdfCWeQRrSP8yDcpHl697oLjEbTIVbAPs7/How8p87CR
         FewZMTTgy0UjWMy1uAkwXyAgFINBNVQH86lNmQdG0uGBeiT9CcYQDANkPN+bxsuXIJM6
         I967JGQ2dbmud06B6582zqeOdQaR0FIdLa5DyRJwSnN6Dlv4iE3LaeuC6KqyQpWxoP+9
         vsyi4N8q83YTmDJgH2J4CnRPUm/A2kuMGeAVwLsgY+fDIe2/8Fpr0ICEYQKGqnxbla7u
         lgXg==
X-Gm-Message-State: AODbwcBOWfuna7V0mEKmQLVKBDeTOmEL6t7b8w7il3rIwT+jT26AEtlL
	UO/gEPoqg5ZC696qA5v16hMXDxsVxw==
X-Received: by 10.13.217.129 with SMTP id b123mr14242135ywe.105.1496088059352;
 Mon, 29 May 2017 13:00:59 -0700 (PDT)
MIME-Version: 1.0
Sender: jakub.php@gmail.com
Received: by 10.129.85.81 with HTTP; Mon, 29 May 2017 13:00:59 -0700 (PDT)
In-Reply-To: <CANUQDChzB7EYyx8QOPgDC2TPR7n-h-dK43tHDfTZ=ocHPLHSOQ@mail.gmail.com>
References: <CANUQDCiUYNwH_tkZyS_cbWVa1X=4CAA3_14VD+fYjAXk-JU=1g@mail.gmail.com>
 <CANUQDChzB7EYyx8QOPgDC2TPR7n-h-dK43tHDfTZ=ocHPLHSOQ@mail.gmail.com>
Date: Mon, 29 May 2017 21:00:59 +0100
X-Google-Sender-Auth: OnZCayOWcOHOEEe85GSgJxUhjTM
Message-ID: <CAEKnhAH8eGzcUsWODc75_L1kq4OtF2bvR7qJkijWWSVoY7c_mQ@mail.gmail.com>
To: Niklas Keller <me@kelunik.com>
Cc: PHP Internals <internals@lists.php.net>
Content-Type: multipart/alternative; boundary="001a114fa4645499b90550af2510"
Subject: Re: [RFC] Distrust SHA-1 Certificates
From: bukka@php.net (Jakub Zelenka)

--001a114fa4645499b90550af2510
Content-Type: text/plain; charset="UTF-8"

On Mon, May 29, 2017 at 11:58 AM, Niklas Keller <me@kelunik.com> wrote:

> Morning Internals,
>
> I have updated the RFC to use a "min_signature_bits" setting instead.
>
>
Wouldn't be better use security levels instead as it is in OpenSSL? Of
course I mean just for sig level to not re-implement everything. Basically
having sig_level or something like that...

--001a114fa4645499b90550af2510--