diff options
author | Dr. Stephen Henson <steve@openssl.org> | 2010-02-12 21:59:31 +0000 |
---|---|---|
committer | Dr. Stephen Henson <steve@openssl.org> | 2010-02-12 21:59:31 +0000 |
commit | f9595988665e86018cdbd76d8f0edb2d9a44bcb1 (patch) | |
tree | f2674bbb4e3981f66cbce6fe72801b1fab4401ba /doc | |
parent | 5a9e3f05ff287a76fa6cd344fb42fc69be5f0cd8 (diff) | |
download | openssl-f9595988665e86018cdbd76d8f0edb2d9a44bcb1.tar.gz |
update references to new RI RFC
Diffstat (limited to 'doc')
-rw-r--r-- | doc/ssl/SSL_CTX_set_options.pod | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/doc/ssl/SSL_CTX_set_options.pod b/doc/ssl/SSL_CTX_set_options.pod index a878a6af6d..3e61a36e17 100644 --- a/doc/ssl/SSL_CTX_set_options.pod +++ b/doc/ssl/SSL_CTX_set_options.pod @@ -234,8 +234,8 @@ these options. =head1 SECURE RENEGOTIATION OpenSSL 0.9.8m and later always attempts to use secure renegotiation as -described in draft-ietf-tls-renegotiation (FIXME: replace by RFC). This -counters the prefix attack described in CVE-2009-3555 and elsewhere. +described in RFC5746. This counters the prefix attack described in +CVE-2009-3555 and elsewhere. The deprecated and highly broken SSLv2 protocol does not support secure renegotiation at all: its use is B<strongly> discouraged. |