Hi, I backported mod_ssl's SSLInsecureRenegotiation option and would like to T&R 1.2.21 with compiled OpenSSL 0.9.8m that should fully solve the CVE-2009-3555.
ABI is extended to allow checking the OpenSSL feature supported, so usage would require 1.2.21. Comments? Regards -- ^TM --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org