Did you try compiling with Openssl 0.9.8l? Joe
> -----Original Message----- > From: Erik Hensema / HostingXS [mailto:[email protected]] > Sent: Wednesday, October 26, 2011 4:59 AM > To: [email protected] > Subject: [Pound Mailing List] SSL renegotiation DDoS and Pound > > Dear list, > > > Today a new DDoS tool against SSL was disclosed: > > http://seclists.org/fulldisclosure/2011/Oct/779 > > It seems SSL renegotiation is most commonly used for client > certificates. > > Is there a way to disable renegotiation in pound to mitigate this > problem? > > -- > Met vriendelijke groet, > > > Erik Hensema > -- > HostingXS B.V. > eXcellent Service > > Support: [email protected] > Algemeen: [email protected] > Administratie: [email protected] > > Telefoon: 024 - 324 91 77 > Fax: 024 - 324 91 76 > > Post adres: > Postbus 5 > 6500 AA te Nijmegen > > Website: http://www.hostingxs.nl > Twitter: http://twitter.com/HostingXS > > -- > To unsubscribe send an email with subject unsubscribe to > [email protected]. > Please contact [email protected] for questions. -- To unsubscribe send an email with subject unsubscribe to [email protected]. Please contact [email protected] for questions.
