Ian,
Ian G wrote:
That was my thought also. And what's more, Ben posted on my
blog at https://www.financialcryptography.com/mt/archives/000463.html
a week back that
Apache 2.1 supports TLS upgrade -
http://httpd.apache.org/docs-2.1/mod/mod_ssl.html#sslengine
"New in Apache 2.1, S
On Wednesday 01 June 2005 19:01, Gervase Markham wrote:
> Duane wrote:
> > This is especially important for web related uses
> > as you could also send the hostname you wanted to connect to before
> > doing the handshaking, which means if a server has 50 certificates to
> > choose from, and you sen
Duane wrote:
This is especially important for web related uses
as you could also send the hostname you wanted to connect to before
doing the handshaking, which means if a server has 50 certificates to
choose from, and you send a specific hostname it can try and match that
and send you the right c
Ian G wrote:
> Something I've been meaning to ask - is there any particular
> reason to continue to discuss SSLv3 when instead we could
> just talk about and promote TLSv1 ? That is, is there anything
> in the two specs and the deployed implementations that might
> make one or the other incompati
> Nelson B wrote:
> > Please read appendix E.2 of the SSL3 specification and TLS standard.
> > (It's the same appendix and same text in both documents).
> > SSL3 spec:http://wp.netscape.com/eng/ssl3/draft302.txt
> > TLS standard: http://www.rfc-editor.org/rfc/rfc2246.txt
Something I've been m
