diff options
author | Dr. Stephen Henson <steve@openssl.org> | 2010-02-12 22:02:07 +0000 |
---|---|---|
committer | Dr. Stephen Henson <steve@openssl.org> | 2010-02-12 22:02:07 +0000 |
commit | 68be98d1a6170b9ce64ba6a8b68479ce0ee8aebe (patch) | |
tree | ae9643f718b898f71033801d646ea4dca2751748 /doc | |
parent | 0bbbadf3f5b7b26d718df979cc9383ac10efbe1c (diff) |
update references to new RI RFC
Diffstat (limited to 'doc')
-rw-r--r-- | doc/ssl/SSL_CTX_set_options.pod | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/doc/ssl/SSL_CTX_set_options.pod b/doc/ssl/SSL_CTX_set_options.pod index 6cbda5f194..52c7497e3a 100644 --- a/doc/ssl/SSL_CTX_set_options.pod +++ b/doc/ssl/SSL_CTX_set_options.pod @@ -235,8 +235,8 @@ these options. =head1 SECURE RENEGOTIATION OpenSSL 0.9.8m and later always attempts to use secure renegotiation as -described in draft-ietf-tls-renegotiation (FIXME: replace by RFC). This -counters the prefix attack described in CVE-2009-3555 and elsewhere. +described in RFC5746. This counters the prefix attack described in +CVE-2009-3555 and elsewhere. The deprecated and highly broken SSLv2 protocol does not support secure renegotiation at all: its use is B<strongly> discouraged. |