[openssl-users] disable tls renegotiation to avoid the risk of OCSP Status Request extension unbounded memory growth
知於裘己
chengzju at qq.com
Fri Sep 23 05:07:19 UTC 2016
Hi guys
can i avoid the risk of "OCSP Status Request extension unbounded memory growth" if i disable server's tls renegotiation ?
in deed, nginx diable tls renegotiation by default since 0.8.23.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20160923/14bd0122/attachment.html>
More information about the openssl-users
mailing list