OpenSSL Security issues

Alan DeKok aland at freeradius.org
Tue Apr 8 20:31:59 CEST 2014


Alan Buxey wrote:
> Surely you'll now have to do this for all the past issues like the
> recent session renegotiation openssl issue too?

  No, because the cache is disabled by default.  Sites using a
vulnerable version of OpenSSL can just disable the cache, and not worry
about it.

  Alan DeKok.


More information about the Freeradius-Users mailing list