<p dir="ltr">We are still in the early whistleblowing stages and that gives a huge disguist in any security minded professionals's gut. I mean why would i bother implementing a security mechanism or protocol that might be disclosed or compromised a few weeks now. Just building against the latest openssl is one thing, but reviewing the actual ciphers is another. Right now just about everyone is waiting for more light on the subject. Opensource projects aren't really moving onto tls 1.2 afraid not to look stupid some time ahead.</p>
<div class="gmail_quote">On Sep 13, 2013 10:44 PM, "Michael Jerris" <<a href="mailto:mike@jerris.com">mike@jerris.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Voting isn't going to do much here… the question is, is someone motivated to do the work and create a patch. I see no reason we would reject a good working tested patch for this.<br>
<br>
Mike<br>
<br>
On Sep 13, 2013, at 2:18 PM, EL <<a href="mailto:fs.user@fordior.net">fs.user@fordior.net</a>> wrote:<br>
<br>
> I'm voting (if I may) for a newer TLS version (1.2) and I share your<br>
> concerns regarding security/privacy. I respect a 'secure by default'<br>
> approach like for example the OpenBSD project. If you ask me, the whole<br>
> security topic is today still nothing compared to what it will become in<br>
> a few years... (It's annoying that so many devices still only support<br>
> unencrypted sip/rtp these days.)<br>
<br>
<br>
_________________________________________________________________________<br>
Professional FreeSWITCH Consulting Services:<br>
<a href="mailto:consulting@freeswitch.org">consulting@freeswitch.org</a><br>
<a href="http://www.freeswitchsolutions.com" target="_blank">http://www.freeswitchsolutions.com</a><br>
<br>
FreeSWITCH-powered IP PBX: The CudaTel Communication Server<br>
<a href="http://www.cudatel.com" target="_blank">http://www.cudatel.com</a><br>
<br>
Official FreeSWITCH Sites<br>
<a href="http://www.freeswitch.org" target="_blank">http://www.freeswitch.org</a><br>
<a href="http://wiki.freeswitch.org" target="_blank">http://wiki.freeswitch.org</a><br>
<a href="http://www.cluecon.com" target="_blank">http://www.cluecon.com</a><br>
<br>
FreeSWITCH-users mailing list<br>
<a href="mailto:FreeSWITCH-users@lists.freeswitch.org">FreeSWITCH-users@lists.freeswitch.org</a><br>
<a href="http://lists.freeswitch.org/mailman/listinfo/freeswitch-users" target="_blank">http://lists.freeswitch.org/mailman/listinfo/freeswitch-users</a><br>
UNSUBSCRIBE:<a href="http://lists.freeswitch.org/mailman/options/freeswitch-users" target="_blank">http://lists.freeswitch.org/mailman/options/freeswitch-users</a><br>
<a href="http://www.freeswitch.org" target="_blank">http://www.freeswitch.org</a><br>
</blockquote></div>