Please consider backporting openssl 1.0.2 to jessie
Please consider backporting openssl 1.0.2 to jessie. I know this is a
difficult and labor-intensive package -- it should not be backported
if there isn't manpower to keep up with security patches -- but it's
badly needed for webservers, as only this version supports ALPN, which
is now a prerequisite for http/2.0 with Chrome/ium; it was already
necessary for IE, and Firefox is likely to follow suit in the near
future. See https://blog.chromium.org/2016/02/transitioning-from-spdy-to-http2.html
for more details.
zw
Reply to: