PHP5 is widely used. The security history of that is less than awesome.
I think OpenSSL is better than I could do or most people could do, but again, it's still at the mercy of C AND a wide range of TLS and other features that seem to multiply like rabbits.
I think we really need a much, much simpler TLS standard going forward.
I think OpenSSL is better than I could do or most people could do, but again, it's still at the mercy of C AND a wide range of TLS and other features that seem to multiply like rabbits.
I think we really need a much, much simpler TLS standard going forward.