← Back to team overview

enterprise-support team mailing list archive

[Bug 1197884] Re: apache2.2 SSL has no forward-secrecy: need ECDHE keys

 

Since this is fixed in Saucy, I'm marking this bug as Fix Released. If
you want PFS in an official Ubuntu release, use Ubuntu 13.10.

I understand that some of you want this feature backported to 12.04.
That's fine, but this is a considerable amount of work and I don't think
it falls under the Ubuntu "LTS" remit. If somebody wants to backport
Apache 2.4 and make it available in 12.04, please do so - see
https://wiki.ubuntu.com/UbuntuBackports for the process. Or
alternatively, publish and maintain a third party PPA and announce it
here.

Backports and PPAs are the acceptable options here. We do not backport
features to LTS releases. That's why they're LTS - because you expect
them to be stable and not introduce unnecessary regressions. You may
want PFS added, but others don't want their production systems running
on LTS messed with. So we generally do not backport features, and I
don't think PFS warrants an exception. See
https://wiki.ubuntu.com/StableReleaseUpdates for the policy. Your route
is simple: if you want a new feature, use a newer release, or sponsor
the backport work yourselves and use a third party maintained backport
or PPA.

** Changed in: apache2 (Ubuntu)
       Status: Fix Committed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Server/Client Support Team, which is subscribed to apache2 in Ubuntu.
Matching subscriptions: Ubuntu Server/Client Support Team
https://bugs.launchpad.net/bugs/1197884

Title:
  apache2.2 SSL has no forward-secrecy: need ECDHE keys

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1197884/+subscriptions