On Sun, Feb 14, 2010 at 9:28 AM, Daniel Veditz <dved...@mozilla.com> wrote: > I'm surprised not to see it mentioned here yet, but Firefox > nightlies implement the new TLS spec to prevent the renegotiation > flaw. The fixes in NSS can also be used to build your own patched > version of moz_nss for apache. > > Huge thanks to Nelson Bolyard for implementing the spec in NSS and > Kai Engert for the client (Firefox) integration piece.
Yes, we should also announce the first NSS 3.12.6 release candidate (CVS tag NSS_3_12_6_RC0). I will make sure we post an announcement today. Wan-Teh -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
