[reSIProcate] TLS/WSS support for DH, ECDH and PFS added
Daniel Pocock
daniel at pocock.pro
Thu Sep 17 10:59:53 CDT 2015
I've just added support for Diffie Hellman (DH and ECDH) on TLS transports.
This won't be backported to 1.9.x, it will be part of the 1.10.0 release.
It is briefly explained in repro.config, see TlsDHParamsFilename
If a client doesn't support DH or ECDH and if you have enabled cipher
suites without DH or ECDH then a connection is still possible.
If you change the list of cipher suites to only support DH or ECDH
ciphers, then it will only accept connections with peers capable of
using this.
More information about the resiprocate-devel
mailing list