Our server makes sure it sets SSL_OP_NO_QUERY_MTU in the SSL_CTX. And rely's on the kernel to do the path MTU and has been working fine for us so far. This should disable the heartbeat extension requests and responses. Should I still upgrade it to the 1.0.1g ?
-- View this message in context: http://openssl.6102.n7.nabble.com/SSL-OP-NO-QUERY-MTU-and-heartbeat-extension-tp49150.html Sent from the OpenSSL - Dev mailing list archive at Nabble.com. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
