[erlang-questions] SSL renegotiation
Wed May 15 18:58:34 CEST 2013
2013/5/14 Niclas Eklund <nick@REDACTED>
> Out of curiosity, why is this timelimit hardcoded and why was 12 choosen?
To be long enough to mitigate the dos attack but short enough to not cause
any disturbance. If you think it would be really useful to you to be able
to configure this timeout you are welcome to make a patch suggestion. It
is easier to add things than to remove them so it is a question
> -define(WAIT_TO_ALLOW_**RENEGOTIATION, 12000).
> 42 would have made more sense since it's the meaning of life ;-)
I do agree that it would have been much more fun to to module the world in
The *Hitchhiker's Guide to the
Regards Ingela Erlang/OTP team - Ericsson AB
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the erlang-questions