Differences

This shows you the differences between two versions of the page.

--- rfc:improved-tls-defaults [2014/02/16 22:00] – updated patch URI rdlowrey
+++ rfc:improved-tls-defaults [2014/06/20 12:12] – Correct server_forward_secrecy anchor target daverandom
@@ Line 4: / Line 4: @@
   * Date: 2014-01-28
   * Author: Daniel Lowrey, rdlowrey@php.net
-  * Status: Vote
+  * Status: Implemented
   * First Published at: http://wiki.php.net/rfc/improved-tls-defaults
-  * Minor Revision (v0.1 → v0.2): 2014-01-28
-  * Major Revision (v0.2 → v0.3): 2014-01-29
-  * Minor Revision (v0.3 → v0.4): 2014-01-30
-  * Minor Revision (v0.4 → v0.5): 2014-01-30
-  * Major Revision (v0.5 → v0.6): 2014-02-01
-  * Minor Revision (v0.6 → v0.7): 2014-02-02
-  * Minor Revision (v0.7 → v0.8): 2014-02-03
-  * Minor Revision (v0.8 → v0.9): 2014-02-06
-  * Minor Revision (v0.9 → v0.10): 2014-02-11
-  * Minor Revision (v0.10 → v0.11): 2014-02-16
 ===== Introduction =====
@@ Line 46: / Line 36: @@
   * [[https://wiki.php.net/rfc/improved-tls-defaults#honor_cipher_order|Create "honor_cipher_order" context option]]
   * [[https://wiki.php.net/rfc/improved-tls-defaults#expose_negotiated_values|Expose negotiated values]]
-  * [[https://wiki.php.net/rfc/improved-tls-defaults#servers_forward_secrecy|Server forward secrecy]]
+  * [[https://wiki.php.net/rfc/improved-tls-defaults#server_forward_secrecy|Server forward secrecy]]
   * [[https://wiki.php.net/rfc/improved-tls-defaults#expose_default_cert_paths|Expose default cert paths]]
   * [[https://wiki.php.net/rfc/improved-tls-defaults#stream_wrapper_creep|Allow fine-grained protocol selection flags]]
@@ Line 76: / Line 66: @@
 ''!ADH''
-  * Anonymous Diffie-Hellman ciphers disallowed as per [[http://www.ietf.org/rfc/rfc2246.txt|RFC2246 Section A.5]]
+  * Anonymous Diffie-Hellman ciphers disallowed as per [[http://tools.ietf.org/html/rfc2246#appendix-A.5|RFC2246 Section A.5]]
 ''!RC4''
@@ Line 639: / Line 629: @@
   * Should PHP implement the recommendations in this proposal as part of 5.6?
-===== Patches and Tests =====
-The proposed changes and tests are available here:
 https://github.com/php/php-src/pull/593
-===== Implementation =====
-TBD
 ===== Vote =====
@@ Line 658: / Line 640: @@
 of the RFC. They are noted here to avoid confusion.
-<doodle title="Should the proposed TLS changes be merged for 5.6?" auth="rdlowrey" voteType="single" closed="false">
+<doodle title="Should the proposed TLS changes be merged for 5.6?" auth="rdlowrey" voteType="single" closed="true">
    * Yes
    * No
@@ Line 664: / Line 646: @@
 Thanks for your time :)
-===== Rejected Features =====
-TBD
@@ Line 673: / Line 651: @@
 == Revisions ==
-v0.11 Updated constant names, reinstated protocol-specific stream wrappers
+v0.11 Updated constant names, protocol-specific stream wrappers no longer deprecated
-v0.10 Removed default verify depth setting; tls:// wrapper no longer deprecated
+v0.10 Removed default verify depth setting; tls wrapper no longer deprecated
 v0.9  Added server forward secrecy, updated default cipher list

Differences

Page Tools