git.ipfire.org Git - thirdparty/apache/httpd.git/commit

]> git.ipfire.org Git - thirdparty/apache/httpd.git/commit

projects / thirdparty / apache / httpd.git / commit

author	Rainer Jung <rjung@apache.org>
	Thu, 8 Jan 2015 15:34:10 +0000 (15:34 +0000)
committer	Rainer Jung <rjung@apache.org>
	Thu, 8 Jan 2015 15:34:10 +0000 (15:34 +0000)
commit	1a9e61d63d013b41c6b8998bf870c73dd13ca93b
tree	d6aa1f567d741e6ed77fb9267aa46b00b2ef8629	tree
parent	8aee281a01ec67542e2b49cf0919ad1ea7f5a8a5	commit \| diff

Add SSLSessionTickets (on|off).

It controls the use of TLS session tickets
(RFC 5077). Default is unchanged (on).

Using session tickets without restarting
the web server with an appropriate frequency
(e.g. daily) compromises perfect forward
secrecy.

As long as we do not have a nice key management
there should be a way to deactivate session
tickets.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1650310 13f79535-47bb-0310-9956-ffa450edef68

Mirror of https://github.com/apache/httpd.git

RSS Atom

docs/manual/mod/mod_ssl.xml		diff \| blob \| blame \| history
modules/ssl/mod_ssl.c		diff \| blob \| blame \| history
modules/ssl/ssl_engine_config.c		diff \| blob \| blame \| history
modules/ssl/ssl_engine_init.c		diff \| blob \| blame \| history
modules/ssl/ssl_private.h		diff \| blob \| blame \| history