You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@httpd.apache.org by Alex Hautequest <hq...@hquest.pro.br> on 2020/04/10 15:20:15 UTC

Support for RFC7627 (Extended Master Secret) on mod_ssl

Does mod_ssl supports this RFC for EMS? I’ve found no references to this on the current documentation.

Seems this has been added to NIST recommendations a while back, and from an old OpenSSL thread[1], this is a client and server combination, most modern clients are now using.

More folks might be looking at this now that consumer grade systems[2] are reporting if their servers does or does not support this.

[1] https://github.com/openssl/openssl/issues/7246#issuecomment-452360968 <https://github.com/openssl/openssl/issues/7246#issuecomment-452360968>
[2] https://www.immuniweb.com/ <https://www.immuniweb.com/>

— Alex