NTS client configuration support has landed

Gary E. Miller gem at rellim.com
Sat Feb 2 22:04:02 UTC 2019


Yo Hal!

On Sat, 02 Feb 2019 00:49:48 -0800
Hal Murray via devel <devel at ntpsec.org> wrote:

> Gary said:
> >>> *tls1.3* Allow TLS1.3 connection.  
> >> This does not feel scalable as new versions of TLS get created.  
> > Yeah.  You prolly guessed I stole of lot of the options from
> > elsewhere. This one also bugged me.   
> 
> The API for SSL has way to set the min protocol version.
>   SSL_CTX_set_min_proto_version(ctx, TLS1_3_VERSION);

I see no number there.  I see a token.  That allows support for SSL as
well.  What we do needs to be able to make that OpenSSL call.  With that
token.

RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
	gem at rellim.com  Tel:+1 541 382 8588

	    Veritas liberabit vos. -- Quid est veritas?
    "If you can’t measure it, you can’t improve it." - Lord Kelvin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 851 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ntpsec.org/pipermail/devel/attachments/20190202/2042fdf6/attachment.bin>


More information about the devel mailing list