On Thu, Nov 05, 2015 at 08:31:28PM +0100, Lukas Tribus wrote:
> >> This should be backported to stable series, the req_ssl_ver keyword was
> >> first introduced in 1.3.16.
> >
> > Thanks Lukas, applied to 1.7, 1.6, 1.5 and 1.4. For 1.3 there might be
> > other patches pending so this one will get t
>> This should be backported to stable series, the req_ssl_ver keyword was
>> first introduced in 1.3.16.
>
> Thanks Lukas, applied to 1.7, 1.6, 1.5 and 1.4. For 1.3 there might be
> other patches pending so this one will get there at the same time.
Great.
I didn't really expect a 1.3 backport, I
On Thu, Nov 05, 2015 at 01:59:30PM +0100, Lukas Tribus wrote:
> The initial record layer version in a SSL handshake may be set to TLSv1.0
> or similar for compatibility reasons, this is allowed as per RFC5246
> Appendix E.1 [1]. Some implementations are Openssl [2] and NSS [3].
>
> A related issue
The initial record layer version in a SSL handshake may be set to TLSv1.0
or similar for compatibility reasons, this is allowed as per RFC5246
Appendix E.1 [1]. Some implementations are Openssl [2] and NSS [3].
A related issue has been fixed some time ago in commit 57d229747
("BUG/MINOR: acl: req_
4 matches
Mail list logo