granicus.if.org Git - apache/commit

author	Rainer Jung <rjung@apache.org>
	Thu, 15 Jan 2015 12:20:33 +0000 (12:20 +0000)
committer	Rainer Jung <rjung@apache.org>
	Thu, 15 Jan 2015 12:20:33 +0000 (12:20 +0000)
commit	d53a8588ef6520b112c04c2ab3b9247ff7907d15
tree	1105bfa840d63c88118825d1505b56371692481f	tree \| snapshot
parent	321f131d601d6da5f591dfbb54a4b05437594aea	commit \| diff

Merge r1650310 and r1650320 from trunk:

mod_ssl: Add SSLSessionTickets (on|off).
It controls the use of TLS session tickets (RFC 5077).
Default is unchanged (on).
Using session tickets without restarting the web server with
an appropriate frequency (e.g. daily) compromises perfect forward
secrecy. As long as we do not have a nice key management
there needs to be a way to deactivate the use of session tickets.

Submitted by: rjung
Reviewed by: rjung, covener, ylavic
Backported by: rjung

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1652074 13f79535-47bb-0310-9956-ffa450edef68

CHANGES		diff \| blob \| history
STATUS		diff \| blob \| history
docs/manual/mod/mod_ssl.xml		diff \| blob \| history
modules/ssl/mod_ssl.c		diff \| blob \| history
modules/ssl/ssl_engine_config.c		diff \| blob \| history
modules/ssl/ssl_engine_init.c		diff \| blob \| history
modules/ssl/ssl_private.h		diff \| blob \| history