* Steve Dispensa: > On 11/10/09 12:13 PM, "Florian Weimer" <[email protected]> wrote: > >> * Simon Josefsson: >> >>> So, in summary, given (my) current knowledge there is no need to either >>> patch GnuTLS or any server application using GnuTLS. >> >> But GNUTLS would have to implement the extension to secure connections >> to servers which support renegotiation. > > (...which support safe renegotiation using the extension - no such thing as > safe renegotiation absent both client and server supporting the extension.)
Eh, yes, this was sort-of implied. Thanks for the correction. _______________________________________________ Help-gnutls mailing list [email protected] http://lists.gnu.org/mailman/listinfo/help-gnutls
