Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
Disabling SSL renegotiation is a crutch, not a fix
(
ivanristic.com
)
2 points
by
bensummers
on Oct 6, 2010
|
hide
|
past
|
favorite
|
1 comment
cperciva
on Oct 6, 2010
[–]
I disagree. SSL renegotiation is something which should never have existed in the first place. We'd be better off if the TLS working group had removed renegotiation from the standard rather than trying to fix it.
If you want new keys, open a new connection.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
If you want new keys, open a new connection.