<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<div class="moz-cite-prefix">On 1/8/2019 7:10 PM, Viktor Dukhovni
wrote:<br>
</div>
<blockquote type="cite"
cite="mid:20190109031013.GQ79754@straasha.imrryr.org">The intent
is that you SHOULD NOT generally customize the list. All the
ciphers in question are quite safe, and if the default changes,
you should probably go with that, rather than a frozen
time-capsule version.
<p class="moz-quote-pre" wrap="">Is there a good reason to want to
change or freeze them at this time?
</p>
</blockquote>
<p><br>
</p>
<p>Our products allow the user to enable and disable individual
ciphers, to allow for both customer policy (e.g. a
customer-specific approved-cipher list) and for the possibility
that one is found to be vulnerable. They are "quite safe"
today... but what about tomorrow?<br>
</p>
<p><br>
</p>
<pre class="moz-signature" cols="72">--
Jordan Brown, Oracle Solaris</pre>
</body>
</html>