Needing TLS handshake to fail

Maxim Dounin mdounin at
Wed Sep 4 14:38:04 UTC 2019


On Wed, Sep 04, 2019 at 09:25:57AM -0400, Phillip Odam wrote:


> Also, the following reference was provided providing a basis for the TLS 
> handshake requirement, sections 7.2.1 and 7.2.2 - 
> Admittedly production 
> implementations vs RFCs don't always work well together and I'm 
> certainly not nginx expert but from this lay persons perspective I 
> certainly see value in allowing nginx to be configurable and fail the 
> TLS handshake.

Just a note: these sections do not require implimentations to 
terminate the TLS handshake.  Rather, they describe what to do if 
you want to terminate the TLS handshake.

Maxim Dounin

More information about the nginx-devel mailing list