httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From rj...@apache.org
Subject svn commit: r1681037 - /httpd/httpd/trunk/docs/manual/mod/mod_ssl.xml
Date Fri, 22 May 2015 08:22:19 GMT
Author: rjung
Date: Fri May 22 08:22:19 2015
New Revision: 1681037

URL: http://svn.apache.org/r1681037
Log:
Be more precise.

Modified:
    httpd/httpd/trunk/docs/manual/mod/mod_ssl.xml

Modified: httpd/httpd/trunk/docs/manual/mod/mod_ssl.xml
URL: http://svn.apache.org/viewvc/httpd/httpd/trunk/docs/manual/mod/mod_ssl.xml?rev=1681037&r1=1681036&r2=1681037&view=diff
==============================================================================
--- httpd/httpd/trunk/docs/manual/mod/mod_ssl.xml (original)
+++ httpd/httpd/trunk/docs/manual/mod/mod_ssl.xml Fri May 22 08:22:19 2015
@@ -2564,7 +2564,9 @@ dd if=/dev/random of=/path/to/file.tkey
 
 <p>Ticket keys should be rotated (replaced) on a frequent basis,
 as this is the only way to invalidate an existing session ticket -
-OpenSSL currently doesn't allow to specify a limit for ticket lifetimes.</p>
+OpenSSL currently doesn't allow to specify a limit for ticket lifetimes.
+A new ticket key only gets used after restarting the web server.
+All existing session tickets become invalid after a restart.</p>
 
 <note type="warning">
 <p>The ticket key file contains sensitive keying material and should



Mime
View raw message