[Pkg-fedora-ds-maintainers] [libapache2-mod-nss] 106/156: Add TLS renegotiation options to the configuration file
Timo Aaltonen
tjaalton-guest at moszumanska.debian.org
Wed Jul 2 13:55:33 UTC 2014
This is an automated email from the git hooks/post-receive script.
tjaalton-guest pushed a commit to branch master
in repository libapache2-mod-nss.
commit 78df57bee4d00b4f5e0b213a4cd82a76036c51c0
Author: rcritten <>
Date: Thu Mar 18 18:34:46 2010 +0000
Add TLS renegotiation options to the configuration file
---
nss.conf.in | 11 +++++++++++
1 file changed, 11 insertions(+)
diff --git a/nss.conf.in b/nss.conf.in
index 65d2406..4411cdc 100644
--- a/nss.conf.in
+++ b/nss.conf.in
@@ -64,6 +64,17 @@ NSSRandomSeed startup builtin
#NSSRandomSeed startup file:/dev/random 512
#NSSRandomSeed startup file:/dev/urandom 512
+#
+# TLS Negotiation configuration under RFC 5746
+#
+# Only renegotiate if the peer's hello bears the TLS renegotiation_info
+# extension. Default off.
+NSSRenegotiation off
+
+# Peer must send Signaling Cipher Suite Value (SCSV) or
+# Renegotiation Info (RI) extension in ALL handshakes. Default: off
+NSSRequireSafeNegotiation off
+
##
## SSL Virtual Host Context
##
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-fedora-ds/libapache2-mod-nss.git
More information about the Pkg-fedora-ds-maintainers
mailing list