TLS Renegotiation problem

Tomas Hoger thoger at redhat.com
Wed Nov 11 11:03:54 CET 2009


On Tue, 10 Nov 2009 19:13:27 +0100 Florian Weimer <fw at deneb.enyo.de>
wrote:

> > So, in summary, given (my) current knowledge there is no need to
> > either patch GnuTLS or any server application using GnuTLS.
> 
> But GNUTLS would have to implement the extension to secure connections
> to servers which support renegotiation.

Simon confirmed that the implementation of the extension is planned.
I apologize for not properly specifying that "no change needed" was
actually meant as "no change needed, not even reneg extension
implemented", which caused the confusion.

th.





More information about the Gnutls-devel mailing list