[jira] [Commented] (FELIX-4972) [Jetty] Make SSL renegotiation configurable

Carsten Ziegeler (JIRA) Fri, 31 Jul 2015 02:17:14 -0700

    [ 
https://issues.apache.org/jira/browse/FELIX-4972?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14648963#comment-14648963
 ]


Carsten Ziegeler commented on FELIX-4972:
-----------------------------------------

Thanks, good point - I changed it to false

> [Jetty] Make SSL renegotiation configurable
> -------------------------------------------
>
>                 Key: FELIX-4972
>                 URL: https://issues.apache.org/jira/browse/FELIX-4972
>             Project: Felix
>          Issue Type: Improvement
>          Components: HTTP Service
>    Affects Versions: http.jetty-3.0.2
>            Reporter: Thomas Franconville
>            Assignee: Carsten Ziegeler
>              Labels: patch, security
>             Fix For: http.jetty-3.1.0
>
>         Attachments: FELIX-4972__Allow_SSL_Renegotiation_as_into_Jetty.patch
>
>
> More information:
> http://www.ietf.org/mail-archive/web/tls/current/msg07553.html
> By default, felix jetty allows client renegotiation.
> Test: http://blog.ivanristic.com/2009/12/testing-for-ssl-renegotiation.html



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (FELIX-4972) [Jetty] Make SSL renegotiation configurable

Reply via email to