Steve Langasek has pointed out that I missed the point of the bug.
I'm not comfortable with OPENSSL_TLS_SECURITY_LEVEL=0 in bionic. (Or, indeed, in cosmic either.)
We shipped 18.04 LTS with OPENSSL_TLS_SECURITY_LEVEL=1, correct? I don't recall seeing more than a handful of complaints about security parameter mismatches over the last year. If anything, users are asking for tighter defaults, not looser defaults.
I don't believe we should be downgrading the default security level as a side effect of this transition.
Steve Langasek has pointed out that I missed the point of the bug.
I'm not comfortable with OPENSSL_ TLS_SECURITY_ LEVEL=0 in bionic. (Or, indeed, in cosmic either.)
We shipped 18.04 LTS with OPENSSL_ TLS_SECURITY_ LEVEL=1, correct? I don't recall seeing more than a handful of complaints about security parameter mismatches over the last year. If anything, users are asking for tighter defaults, not looser defaults.
I don't believe we should be downgrading the default security level as a side effect of this transition.
Thanks