While I disagreed with you on some PKI-related topics, I fully agree with you on that specific one.
GnuTLS is bad.

(back reading that new triple handshake TLS attack)

2014-03-04 20:40 GMT+01:00 Howard Chu <hyc@symas.com>:
http://arstechnica.com/security/2014/03/critical-crypto-bug-leaves-linux-hundreds-of-apps-open-to-eavesdropping/

Perhaps folks will take us more seriously the next time we say "don't use GnuTLS" ... http://www.openldap.org/lists/openldap-devel/200802/msg00072.html

--
Erwann.