* Simon Josefsson <[email protected]> [2024-01-11 13:10]:
I believe tls-server-end-point is generally best left unimplemented to guide efforts towards supporting the stronger tls-exporter.
One use case I see for tls-server-end-point is that it allows for supporting channel binding by setups where TLS is terminated by some reverse proxy, thereby protecting against _some_ but not all attack vectors that tls-exporter protects against.
Holger _______________________________________________ Standards mailing list -- [email protected] To unsubscribe send an email to [email protected]
