On 20.03.24 11:08, David Benjamin wrote:
I can't say what was going on in the SSLv3 days, but yes record size
limits are important for memory. Whatever the maximum record size is,
the peer can force you to buffer that many bytes in memory. That means
the maximum record size is actually a DoS pa
* Whatever the maximum record size is, the peer can force you to buffer
that many bytes in memory. That means the maximum record size is actually a DoS
parameter for the protocol.
Absolutely true. If you have a limit, attackers will try to push your server up
to and over the limit and try t
I can't say what was going on in the SSLv3 days, but yes record size limits
are important for memory. Whatever the maximum record size is, the peer can
force you to buffer that many bytes in memory. That means the maximum
record size is actually a DoS parameter for the protocol.
On Wed, Mar 20, 20
Hi to all,
during the presentation of the Large Record Sizes draft at the tls
session yesterday, I wondered why the length restriction is in TLS in
the first place.
I have gone back to the TLS1.0 RFC, as well as SSLv3, TLS1.3 and TLS1.2
and have found the restriction in all of them, but not
