Hi, On Sat, Jul 12, 2014 at 12:41:14PM +0200, David Sommerseth wrote: > IIRC, the guy overseeing the Secure Response Team in RH is Mark Cox, which > again > is also an upstream OpenSSL maintainer. So I'm quite sure all RH releases > have > fixed this issue.
Well, OpenSSL considers this a "feature", not an "issue"... and being
able to turn off session resumption is also considered a "feature"...
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany [email protected]
fax: +49-89-35655025 [email protected]
pgpHXYqDsEeGR.pgp
Description: PGP signature
