I approve of this for release, (without
qualification) but have some questions, which are actually "over my
head", so might not be asking quite right, or perhaps obvious to others.
a. You say "TCF
connections use a plaintext protocol based on JSON by default"
Isn't the trend to use "secure connections"
by default, and force the user to be less secure, if that's what they want?
(Not sure how that would be done, for TCF ... just asking.)
b. In standards section, you say "The SSL support
uses X.509 certificates."
Could that be stated as "TLS/SSL support? (That is,
is that implied?)
I'm just asking, in light of "POODLE" and "Heartbleed"
it seemed the advice was "to disable SSL support, and use TLS instead".
I'm guessing you've accounted for all that ... but, am
just curious (mostly due to timing of some other notes I recently got about
old, old server I marginally support. :)
Tools PMC mailing list
06/04/2015 12:40 AM
PMC Approval Request for TCF 1.3
The IP Log has already been approved and
is attached on the review.
Martin Oberhuber, SMTS
/ Product Owner – Development Tools, Wind
River direct +43.662.457915.85 fax
tools-pmc mailing list
To change your delivery options, retrieve your password, or unsubscribe
from this list, visit https://dev.eclipse.org/mailman/listinfo/tools-pmc