Add support for TLS encryption

Brought to you by: dag-, josvisser, markjanssen

#10 Add support for TLS encryption

Milestone: Unstable (example)

Status: open

Owner: nobody

Labels: None

Priority: 5

Updated: 2015-03-10

Created: 2014-10-16

Creator: T.J. Drennan

Private: No

When using SSL encryption the tunnel is explicitly setup in SSLv3 mode. Given that SSLv3 is now broken (CVE-2014-3566) we need to support TLS. The most flexible way to do that is to setup the SSL tunnel to support TLSv1.0, TLSv1.1 and TLSv1.2 instead.

1 Attachments

proxytunnel-1.9.0_tlsonly.patch

Discussion

the0ne - 2015-03-10

On my system i need to override SNI so that apache will accept my connection.
Note: the attached SNI patch is meant to be applied to r253 on top of proxytunnel-1.9.0_tlsonly.patch

Last edit: the0ne 2015-03-16

sni.patch

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Add support for TLS encryption

Group

Searches

Help

#10 Add support for TLS encryption

Discussion