Github user repodude commented on the pull request:
https://github.com/apache/trafficserver/pull/232#issuecomment-114926338
Session re-use with TLS session tickets requires TLS-extensions which comes
into being at TLSv1.0+. As this must be turned on at the client hello,the
connect TLS version is set prior.
Currently ATS only connect with the old SSLv23_client_method(), and does
not have configuration for TLS version. Without this, session ticket will be a
compiled mutually exclusive relationship with SSLv2.0 and SSLv3.0. Many
security guys would think this is a good thing because of many known security
compromises ...regardless, will make it configurable so the control is in the
configuration. I've created ticket TS-3716 to address this.
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at infrastruct...@apache.org or file a JIRA ticket
with INFRA.
---
