diff options
Diffstat (limited to 'bugs')
-rw-r--r-- | bugs/SSLv3 | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/bugs/SSLv3 b/bugs/SSLv3 index 2e22a65cdd..db53e1343a 100644 --- a/bugs/SSLv3 +++ b/bugs/SSLv3 @@ -39,3 +39,11 @@ SSL_shutdown() and still sharing the socket with its parent). Netscape, when using export ciphers, will accept a 1024 bit temporary RSA key. It is supposed to only accept 512. + +If Netscape connects to a server which requests a client certificate +it will frequently hang after the user has selected one and never +complete the connection. Hitting "Stop" and reload fixes this and +all subsequent connections work fine. This appears to be because +Netscape wont read any new records in when it is awaiting a server +done message at this point. The fix is to send the certificate request +and server done messages in one record. |