You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by bu...@apache.org on 2015/05/23 17:41:35 UTC
[Bug 56108] Allow user-defined Diffie-Hellman parameters (secure
DH-Cipher)
https://bz.apache.org/bugzilla/show_bug.cgi?id=56108
--- Comment #3 from Rainer Jung <ra...@kippdata.de> ---
I have ported the current mod_ssl code from httpd to tcnative with the
following features:
- by default use the same size for DH as the key used in the certificate. So
certificate strength reflects in key exchange strengths.
- optionally you can generate your own DH params using "opsnssl dhparam" and
add them into the certificate file. We will find the data there automatically
(if present) and use these params instead.
A docs update will follow soon.
I guess with these improvements we can fix this issue here as soon as the next
tcnative 1.1.34 gets released.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org