On 03/03/2010 01:19 PM, Mladen Turk wrote:
On 03/02/2010 05:58 PM, jean-frederic clere wrote:
On 03/02/2010 05:47 PM, Mladen Turk wrote:
On 03/02/2010 05:43 PM, jean-frederic clere wrote:
On 03/02/2010 09:51 AM, mt...@apache.org wrote:
Author: mturk
Date: Tue Mar 2 08:51:46 2010
New Revision: 917921
URL: http://svn.apache.org/viewvc?rev=917921&view=rev
Log:
Add unafe legacy renegotiation support
How does that interacts with
http://svn.apache.org/viewvc?rev=881179&view=rev ?
The same way as in mod_ssl
Yes but won't it be possible to allow client initiated renegotiation
with 0.9.8m?
Huh, seems that 0.9.8m behaves exactly like 0.9.8l
If used and s_client enters R, it simply stays there
until socket timeout.
I simply doesn't mater which client is used 0.9.8m or
legacy one, and weather the SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION
is set or not. I'll check httpd 2.2.15 to see if it behaves the same.
One update. It works with 0.9.8m s_client in such a way
that client renegotiation is always rejected because of
handshake hook. If hook is removed it works fine.
Other clients just block during 'R'.
Like said I'll check with httpd 2.2.15 and see how it behaves.
If it behaves the same with old client's, it's worse then I thought.
Regards
--
^TM
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
