[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[SCM] GNU gnutls branch, gnutls_2_10_x, updated. gnutls_2_9_10-75-g22a2a
|
From: |
Simon Josefsson |
|
Subject: |
[SCM] GNU gnutls branch, gnutls_2_10_x, updated. gnutls_2_9_10-75-g22a2a8b |
|
Date: |
Mon, 07 Jun 2010 14:14:02 +0000 |
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU gnutls".
http://git.savannah.gnu.org/cgit/gnutls.git/commit/?id=22a2a8b5108d42d4eebb3497a0f7a44ea618a049
The branch, gnutls_2_10_x has been updated
via 22a2a8b5108d42d4eebb3497a0f7a44ea618a049 (commit)
from 414672179d60a511332421dc85df833fbe46b292 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit 22a2a8b5108d42d4eebb3497a0f7a44ea618a049
Author: Simon Josefsson <address@hidden>
Date: Mon Jun 7 16:13:58 2010 +0200
Editorial doc fixes.
-----------------------------------------------------------------------
Summary of changes:
doc/gnutls.texi | 21 +++++++++++----------
1 files changed, 11 insertions(+), 10 deletions(-)
diff --git a/doc/gnutls.texi b/doc/gnutls.texi
index 7e4c3ca..83107e1 100644
--- a/doc/gnutls.texi
+++ b/doc/gnutls.texi
@@ -1278,7 +1278,7 @@ the majority of deployed servers out there. We will
reconsider this
default behaviour in the future when more servers have been upgraded.
Note that it is easy to configure clients to always require the safe
renegotiation extension from servers (see below on the
-%SAFE_RENEGOTIATION priority string).
+$code{%SAFE_RENEGOTIATION} priority string).
To modify the default behaviour, we have introduced some new priority
strings. The priority strings can be used by applications
@@ -1287,15 +1287,16 @@ parameter to @code{gnutls-cli} and @code{gnutls-serv}).
The @code{%UNSAFE_RENEGOTIATION} priority string permits
(re-)handshakes even when the safe renegotiation extension was not
-negotiated. The default behavior is @code{%PARTIAL_RENEGOTIATION} that will
-prevent renegotiation with clients and servers not supporting the
-extension. This is secure for servers but leaves clients vulnerable
-to some attacks, but this is a tradeoff between security and compatibility
-with old servers. The @code{%SAFE_RENEGOTIATION} priority string makes
-clients and servers require the extension for every handshake. The latter
-is the most secure option for clients, at the cost of not being able
-to connect to legacy servers. Servers will also deny clients that
-do not support the extension from connecting.
+negotiated. The default behavior is @code{%PARTIAL_RENEGOTIATION}
+that will prevent renegotiation with clients and servers not
+supporting the extension. This is secure for servers but leaves
+clients vulnerable to some attacks, but this is a tradeoff between
+security and compatibility with old servers. The
address@hidden priority string makes clients and servers
+require the extension for every handshake. The latter is the most
+secure option for clients, at the cost of not being able to connect to
+legacy servers. Servers will also deny clients that do not support
+the extension from connecting.
It is possible to disable use of the extension completely, in both
clients and servers, by using the @code{%DISABLE_SAFE_RENEGOTIATION}
hooks/post-receive
--
GNU gnutls
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [SCM] GNU gnutls branch, gnutls_2_10_x, updated. gnutls_2_9_10-75-g22a2a8b,
Simon Josefsson <=