]> granicus.if.org Git - apache/commit
projects / apache / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a8afe65) | patch
Add SSLSessionTickets (on|off).
authorRainer Jung <rjung@apache.org>
Thu, 8 Jan 2015 15:34:10 +0000 (15:34 +0000)
committerRainer Jung <rjung@apache.org>
Thu, 8 Jan 2015 15:34:10 +0000 (15:34 +0000)
commitbf93fed8a1fb6d4397e2f97f6470c4221a691e74
treed6aa1f567d741e6ed77fb9267aa46b00b2ef8629tree | snapshot
parenta8afe6572f9ccd77bb35ed9dd6b98db79af0ab1bcommit | diff
Add SSLSessionTickets (on|off).

It controls the use of TLS session tickets
(RFC 5077). Default is unchanged (on).

Using session tickets without restarting
the web server with an appropriate frequency
(e.g. daily) compromises perfect forward
secrecy.

As long as we do not have a nice key management
there should be a way to deactivate session
tickets.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1650310 13f79535-47bb-0310-9956-ffa450edef68
docs/manual/mod/mod_ssl.xml diff | blob | history
modules/ssl/mod_ssl.c diff | blob | history
modules/ssl/ssl_engine_config.c diff | blob | history
modules/ssl/ssl_engine_init.c diff | blob | history
modules/ssl/ssl_private.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.