On Wed, Apr 20, 2011 at 1:50 PM, Sai Pullabhotla <[email protected]> wrote: > I'm not sure if a server should allow CCC on an implicit SSL control > connection. What do you guys think?
I think a CCC should be rejected on implicit SSL. > Also, the server should reject CCC request on a un-authenticated > session (or not logged in). Do you guys agree to this? Agreed. /niklas
