Vote for OPENSSL_NO_SSL3 (including default), looks acceptable on dev@.

author Yann Ylavic <ylavic@apache.org>

Tue, 29 Sep 2015 10:17:39 +0000 (10:17 +0000)

committer Yann Ylavic <ylavic@apache.org>

Tue, 29 Sep 2015 10:17:39 +0000 (10:17 +0000)
author Yann Ylavic <ylavic@apache.org>
Tue, 29 Sep 2015 10:17:39 +0000 (10:17 +0000)
committer Yann Ylavic <ylavic@apache.org>
Tue, 29 Sep 2015 10:17:39 +0000 (10:17 +0000)
diff --git a/STATUS b/STATUS

index 5c96ae3875c619433ecf779c1b2c9c452914dbe3..b989df3b11f0aae1246a2f066a5069ccec940943 100644 (file)
--- a/STATUS
+++ b/STATUS
@@ -232,10 +232,7 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK:
       PR 58349, PR 57120.
       trunk patch: https://svn.apache.org/r1703952
       2.4.x patch: https://people.apache.org/~kbrand/mod_ssl-2.4.x-disable-sslv3.diff
-     +1: kbrand
-     ylavic: Should we really change the (implicit) default in 2.4.x at
-             this stage (and potentially break existing configuratios w/o
-             SSLProtocol which used to work with SSLv3 only capable clients)?
+     +1: kbrand, ylavic
  
    *) mod_alias: Introduce expression parser support for Alias, ScriptAlias
       and Redirect. Limit Redirect expressions to directory (Location) context
author	Yann Ylavic <ylavic@apache.org>
	Tue, 29 Sep 2015 10:17:39 +0000 (10:17 +0000)
committer	Yann Ylavic <ylavic@apache.org>
	Tue, 29 Sep 2015 10:17:39 +0000 (10:17 +0000)