Skip to content
  • Joe Orton's avatar
    Fix CAN-2004-0885: · d107d7d6
    Joe Orton authored
    * modules/ssl/ssl_engine_kernel.c (ssl_hook_Access): Ensure that a
    correct cipher suite has been negotiated, else deny access.
    
    * modules/ssl/ssl_engine_init.c (ssl_init_ctx_protocol): With OpenSSL
    0.9.7, prevent session resumption during a renegotiation to force the
    client to negotiate a new (and acceptable) cipher suite.
    
    Submitted by: Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton
    
    
    git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@105396 13f79535-47bb-0310-9956-ffa450edef68
    d107d7d6
To find the state of this project's repository at the time of any of these versions, check out the tags.