/[Apache-SVN]

Revision 1527295

Jump to revision:
Author:	kbrand
Date:	Sun Sep 29 10:35:46 2013 UTC (10 years, 6 months ago)
Changed paths:	12
Log Message:	Improve ephemeral key handling (companion to r1526168): - allow to configure custom DHE or ECDHE parameters via the SSLCertificateFile directive, and adapt its documentation accordingly (addresses PR 49559) - add standardized DH parameters from RFCs 2409 and 3526, use them based on the length of the certificate's RSA/DSA key, and add a FAQ entry for clients which limit DH support to 1024 bits (such as Java 7 and earlier) - move ssl_dh_GetParamFromFile() from ssl_engine_dh.c to ssl_util_ssl.c, and add ssl_ec_GetParamFromFile() - drop ssl_engine_dh.c from mod_ssl For the standardized DH parameters, OpenSSL version 0.9.8a or later is required, which was therefore made a new minimum requirement in r1527294.

Changed paths

Path	Details
httpd/httpd/trunk/CHANGES	modified , text changed
httpd/httpd/trunk/CMakeLists.txt	modified , text changed
httpd/httpd/trunk/LAYOUT	modified , text changed
httpd/httpd/trunk/docs/manual/mod/mod_ssl.xml	modified , text changed
httpd/httpd/trunk/docs/manual/ssl/ssl_faq.xml	modified , text changed
httpd/httpd/trunk/modules/ssl/config.m4	modified , text changed
httpd/httpd/trunk/modules/ssl/mod_ssl.dsp	modified , text changed
httpd/httpd/trunk/modules/ssl/ssl_engine_dh.c	deleted
httpd/httpd/trunk/modules/ssl/ssl_engine_init.c	modified , text changed
httpd/httpd/trunk/modules/ssl/ssl_engine_kernel.c	modified , text changed
httpd/httpd/trunk/modules/ssl/ssl_private.h	modified , text changed
httpd/httpd/trunk/modules/ssl/ssl_util_ssl.c	modified , text changed

infrastructure at apache.org	ViewVC Help
Powered by ViewVC 1.1.26