On 30 March 2016 at 05:00, David Benjamin <[email protected]> wrote: > On the server, OpenSSL already includes the version in the SSL_SESSION > structure, and recent enough versions of it will not accept sessions at the > wrong version
NSS too. This is the right thing, I think. I have no objection to making this a requirement in the spec. _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
