[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Bug-wget] [PATCH] add PFS (Perfect Forward Security) value to --sec

From: Daniel Kahn Gillmor
Subject: Re: [Bug-wget] [PATCH] add PFS (Perfect Forward Security) value to --secure-protocol
Date: Sat, 07 Sep 2013 12:16:56 -0400
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130821 Icedove/17.0.8

On 09/07/2013 12:10 PM, Daniel Kahn Gillmor wrote:
> it might be better to do a runtime check (e.g. using
> gnutls_check_version(NULL) >= 0x030204) instead of a compile-time check.

sigh.  that is of course the wrong code.  to do a proper runtime check,
it should be:

 if (gnutls_check_version("3.2.4"))
    err = gnutls_priority_set_direct (session, "PFS", NULL);
    err = gnutls_priority_set_direct (session, "NORMAL:-RSA", NULL);

sorry to have botched that the first time around.


Attachment: signature.asc
Description: OpenPGP digital signature

reply via email to

[Prev in Thread] Current Thread [Next in Thread]