-
|
I use ctxwinsock for my HTTPS server program. When I use myssl to scan the server program, myssl reports that the server program allows renegotiation, which is a serious security vulnerability. How do I prohibit renegotiation? thank you |
Beta Was this translation helpful? Give feedback.
Replies: 2 comments 3 replies
-
|
Fixed in commit 4b093b6 10x for the bug report! Edit: Did some tests with a VbAsyncSocket server with a valid Let's Encrypt issued certificate Something is wrong with myssl.com test because it says "protocol error" for |
Beta Was this translation helpful? Give feedback.
-
|
thank you very very very much!!success |
Beta Was this translation helpful? Give feedback.
-
|
you are my idol!!! |
Beta Was this translation helpful? Give feedback.
-
|
I'd founf the error too
|
Beta Was this translation helpful? Give feedback.
-
|
Thank you. I have modified the code and the effect is very good.
At 2022-06-22 17:05:02, "Vladimir Vissoultchev" ***@***.***> wrote:
Fixed in commit 4b093b6
10x for the bug report!
—
Reply to this email directly, view it on GitHub, or unsubscribe.
You are receiving this because you authored the thread.Message ID: ***@***.***>
|
Beta Was this translation helpful? Give feedback.
Fixed in commit 4b093b6
10x for the bug report!
Edit: Did some tests with a VbAsyncSocket server with a valid Let's Encrypt issued certificate
Something is wrong with myssl.com test because it says "protocol error" for
IE 8-10 / Win 7handshake simulation but I just tested accessing the https server from Win7 (IE8) and TLS version 1.2 was negotiated w/ ECDHE-RSA-AES128-SHA just ok.