]> git.ipfire.org Git - thirdparty/apache/httpd.git/commit
projects / thirdparty / apache / httpd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 321f131) | patch
Merge r1650310 and r1650320 from trunk:
authorRainer Jung <rjung@apache.org>
Thu, 15 Jan 2015 12:20:33 +0000 (12:20 +0000)
committerRainer Jung <rjung@apache.org>
Thu, 15 Jan 2015 12:20:33 +0000 (12:20 +0000)
commitd53a8588ef6520b112c04c2ab3b9247ff7907d15
tree1105bfa840d63c88118825d1505b56371692481ftree
parent321f131d601d6da5f591dfbb54a4b05437594aeacommit | diff
Merge r1650310 and r1650320 from trunk:

mod_ssl: Add SSLSessionTickets (on|off).
It controls the use of TLS session tickets (RFC 5077).
Default is unchanged (on).
Using session tickets without restarting the web server with
an appropriate frequency (e.g. daily) compromises perfect forward
secrecy. As long as we do not have a nice key management
there needs to be a way to deactivate the use of session tickets.

Submitted by: rjung
Reviewed by: rjung, covener, ylavic
Backported by: rjung

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1652074 13f79535-47bb-0310-9956-ffa450edef68
CHANGES diff | blob | blame | history
STATUS diff | blob | blame | history
docs/manual/mod/mod_ssl.xml diff | blob | blame | history
modules/ssl/mod_ssl.c diff | blob | blame | history
modules/ssl/ssl_engine_config.c diff | blob | blame | history
modules/ssl/ssl_engine_init.c diff | blob | blame | history
modules/ssl/ssl_private.h diff | blob | blame | history
Mirror of https://github.com/apache/httpd.git