Hello. I am a person working in Korea.
I have a question.
I wonder why master-key is revealed in plaintext in the results below.
(used command : Openssl s_client -connect host:port)
------------------------------------------------------------------------------------
(skip)
SSL-Session
Protocol : TLSv1.2
Cipher : ECDHE-RSA-AES128-GCM-SHA256
Session-ID : C3921E69...
Session-ID-ctx:
Master-Key : 6244A1C4B9D48A6C2100198...
(skip)
------------------------------------------------------------------------------------
Does it matter if the master key is exposed in plaintext?
And I wonder what role this master key plays.
Thank you for your detailed answer.
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
