On Thu, Feb 25, 2010, Dr. Stephen Henson wrote: > On Thu, Feb 25, 2010, Victor Duchovni wrote: > > OpenSSL clients treat the warning as fatal because there is no API provision > to renegotiate and then continue if it is refused. So to be cautious we assume > that if an application wants a renegotiation it expects it to succeed and > close the connection if it doesn't. >
I mean of course patched OpenSSL clients. Older ones hang as mentioned. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org