Re: Client certificate gone after 1 minute timeout (SSL, APR)

Konstantin Kolinko Thu, 25 Feb 2010 01:16:14 -0800

2010/2/25 Albert Tumanov <[email protected]>:
> There is a concept of SSL session (Resumed TLS handshake),


I think that will not work anymore, because of CVE-2009-3555

See
http://tomcat.apache.org/security-6.html

Best regards,
Konstantin Kolinko

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Re: Client certificate gone after 1 minute timeout (SSL, APR)

Reply via email to