Needing TLS handshake to fail
Maxim Dounin
mdounin at mdounin.ru
Wed Sep 4 14:38:04 UTC 2019
Hello!
On Wed, Sep 04, 2019 at 09:25:57AM -0400, Phillip Odam wrote:
[...]
> Also, the following reference was provided providing a basis for the TLS
> handshake requirement, sections 7.2.1 and 7.2.2 -
> https://tools.ietf.org/html/rfc5246#section-7.2.1. Admittedly production
> implementations vs RFCs don't always work well together and I'm
> certainly not nginx expert but from this lay persons perspective I
> certainly see value in allowing nginx to be configurable and fail the
> TLS handshake.
Just a note: these sections do not require implimentations to
terminate the TLS handshake. Rather, they describe what to do if
you want to terminate the TLS handshake.
--
Maxim Dounin
http://mdounin.ru/
More information about the nginx-devel
mailing list