Propose.

author Rainer Jung <rjung@apache.org>

Thu, 8 Jan 2015 15:45:34 +0000 (15:45 +0000)

committer Rainer Jung <rjung@apache.org>

Thu, 8 Jan 2015 15:45:34 +0000 (15:45 +0000)
author Rainer Jung <rjung@apache.org>
Thu, 8 Jan 2015 15:45:34 +0000 (15:45 +0000)
committer Rainer Jung <rjung@apache.org>
Thu, 8 Jan 2015 15:45:34 +0000 (15:45 +0000)
diff --git a/STATUS b/STATUS

index 904b541b54832d593cd7b5d2dbbb6d1e3b556f3e..b8643800ad5889dfd6516dade322dd6bd5a6f690 100644 (file)
--- a/STATUS
+++ b/STATUS
@@ -307,6 +307,17 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK:
       2.4.x patch: trunks works (plus CHANGES)
       +1 rjung
  
+   * mod_ssl: Add SSLSessionTickets (on|off).
+     It controls the use of TLS session tickets (RFC 5077).
+     Default is unchanged (on).
+     Using session tickets without restarting the web server with
+     an appropriate frequency (e.g. daily) compromises perfect forward
+     secrecy. As long as we do not have a nice key management
+     there needs to be a way to deactivate the use of session tickets.
+     trunk patch: http://svn.apache.org/r1650310
+     2.4.x patch: trunks works (plus CHANGES)
+     +1 rjung
+
  OTHER PROPOSALS
  
     * A list of further possible backports can be found at:
author	Rainer Jung <rjung@apache.org>
	Thu, 8 Jan 2015 15:45:34 +0000 (15:45 +0000)
committer	Rainer Jung <rjung@apache.org>
	Thu, 8 Jan 2015 15:45:34 +0000 (15:45 +0000)