Both the pcidss/v2.6 and stage for upstream branches support ECDHE already.
https://github.com/goochjj/pound/archive/pcidss/v2.6.zip https://github.com/goochjj/pound/archive/stage_for_upstream/v2.7c.zip Thanks for being willing to contribute! Joe > -----Original Message----- > From: David Rufino [mailto:[email protected]] > Sent: Thursday, December 26, 2013 7:09 PM > To: [email protected] > Subject: [Pound Mailing List] ECDHE patch > > Hello, > > I've been trying to get Pound to support elliptic curve diffie hellman > so that it supports robust forward secrecy (as IE apparently does not > support regular DH). It looks like it requires a code change, so I've > attached a patch which others may find useful. It initializes the ecdh > group to P-256, and seems to allow negotiation of ecdhe ciphers. I > don't really know what I'm doing here, so comments appreciated! > > Thanks, > David -- To unsubscribe send an email with subject unsubscribe to [email protected]. Please contact [email protected] for questions.
