[TS-3371] Should create a global session ticket disable - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 7.0.0
Component/s: SSL
Labels:
None

Description

The current implementation requires the ATS to set the ssl_ticket_enabled=0 for every entry in ssl_multicert.config to turn off the ssl ticket session support.

It would be better to have a global switch. It seems highly unlikely that someone will want to deploy ssl tickets for some destinations but not others.

Would also be good to have a switch to disable ATS from offering session tickets when communicating with origin servers.

Attachments

Issue Links

incorporates

TS-4263 Session tickets keys in ssl_multicert.config do not work with SNI discovered hosts

Closed

is related to

TS-3742 ATS advertises TLS ticket extension even when disabled

Closed

TS-2773 Rewrite SSL certificate configuration

Open

relates to

TS-3528 Create a global for the ticket_key_name from ssl_multicert.config

Open

links to

GitHub Pull Request #750

GitHub Pull Request #758

(1 links to)

Activity

People

Assignee:: Syeda Persia Aziz

Reporter:: Susan Hinrichs

Votes:: 0 Vote for this issue

Watchers:: 8 Start watching this issue

Dates

Created:: 06/Feb/15 14:28

Updated:: 07/Nov/16 23:26

Resolved:: 16/Jul/16 15:19