On 21/08/2013 12:17, Joe Orton wrote: > > I can't see we can or should do much here other than adding an option > (yay) which globally disables session ticket, SSL_OP_NO_TICKET in the > SSL_CTX, for the paranoid. >
That's already possible with SSLOpenSSLConfCmd using something like: SSLOpenSSLConfCmd Options -SessionTicket unfortunately that's only supported in trunk and the unreleased OpenSSL 1.0.2 and later. > It would be desirable (perhaps) if we could rotate keys faster than once > the server lifetime, but this is shared state across the server so that > is definitely non-trivial. > Yes you'd need a shared cache if the key couldn't be found locally and renew it periodically. A bit like how OCSP stapling works IIRC. > Any opinions here? > The default key size is also 128 bits for the encryption and HMAC keys. That can be easily increased. Steve. -- Dr Stephen Henson. OpenSSL Software Foundation, Inc. 1829 Mount Ephraim Road Adamstown, MD 21710 +1 877-673-6775 [email protected]
