httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "William A. Rowe Jr." <>
Subject Re: Fwd: Client Initiated Renegotiation after 0.9.8l
Date Thu, 14 Apr 2011 09:41:01 GMT
On 4/14/2011 4:28 AM, Joe Orton wrote:
> If it's true that IIS also rejects client-initiated reneg (per claim in 
> that thread), I'd say there is no imperative to change mod_ssl's 
> behaviour from an interop perspective.  
> You can argue for "correctness"; the protocol allows a client-initiated 
> reneg, so why should mod_ssl disable it?  I don't find that terribly 
> compelling; reneg and HTTP over SSL is a conceptual mess, and a 
> significant proportion of the security issues in mod_ssl have been 
> reneg-related (though maybe that sounds FUDdish).

As another data point, Tomcat https connector never really supported
renegotiation until the eve of CVE 2009-3555, IIRC (talk about timing ;-)

Thanks for the thread pointer.

It seems like our directive is a serious misnomer, if it is required to
enable either legacy or new renegotiation.  Before 2.2.18, it seems
prudent to make this a tristate (legacy or modern, modern only, or none)
and support it again, even if the default is a safe 'none' value.

Of course the very advisability of unilaterally trusting CAs has been
in question for some time now, so to suggest we are protecting users
by disabling any renegotiation seems like a small worry ;-)

View raw message