From: Rainer Jung <rjung@apache.org>
Date: Thu, 8 Jan 2015 15:45:34 +0000 (+0000)
Subject: Propose.
X-Git-Tag: 2.4.11~50
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=5e03b954d53ae0497a4833f2af9b90df13185ab1;p=thirdparty%2Fapache%2Fhttpd.git

Propose.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1650313 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/STATUS b/STATUS
index 904b541b548..b8643800ad5 100644
--- a/STATUS
+++ b/STATUS
@@ -307,6 +307,17 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK:
      2.4.x patch: trunks works (plus CHANGES)
      +1 rjung
 
+   * mod_ssl: Add SSLSessionTickets (on|off).
+     It controls the use of TLS session tickets (RFC 5077).
+     Default is unchanged (on).
+     Using session tickets without restarting the web server with
+     an appropriate frequency (e.g. daily) compromises perfect forward
+     secrecy. As long as we do not have a nice key management
+     there needs to be a way to deactivate the use of session tickets.
+     trunk patch: http://svn.apache.org/r1650310
+     2.4.x patch: trunks works (plus CHANGES)
+     +1 rjung
+
 OTHER PROPOSALS
 
    * A list of further possible backports can be found at: