Re: [jetty-users] Enabling session resumption

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

Re: [jetty-users] Enabling session resumption

From: Lothar Kimmeringer <job@xxxxxxxxxxxxxx>
Date: Mon, 23 Sep 2019 15:38:31 +0200
Delivered-to: jetty-users@xxxxxxxxxxx
List-archive: <https://www.eclipse.org/mailman/private/jetty-users>
List-help: <mailto:jetty-users-request@eclipse.org?subject=help>
List-subscribe: <https://www.eclipse.org/mailman/listinfo/jetty-users>, <mailto:jetty-users-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://www.eclipse.org/mailman/options/jetty-users>, <mailto:jetty-users-request@eclipse.org?subject=unsubscribe>
User-agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.9.0



Am 23.09.2019 um 15:13 schrieb Simone Bordet:

Run with -Djavax.net.debug=all, you will see what the JDK TLS
implementation does, and they do print whether the session was
resumed.
Also, in Jetty, we do log in SslConnection whether the session was
resumed or not.

That should be enough to convince the pentesters.


It should be obvious in a Wireshark-trace as well which might be
more suitable as "proof" when shown to pen testers who I assume
are more "fluent" in Wireshark dumps than in reading javax.net-
debug outputs.


Cheers, Lothar

References:
- [jetty-users] Enabling session resumption
  - From: Silvio Bierman
- Re: [jetty-users] Enabling session resumption
  - From: Simone Bordet
- Re: [jetty-users] Enabling session resumption
  - From: Silvio Bierman
- Re: [jetty-users] Enabling session resumption
  - From: Simone Bordet

Prev by Date: Re: [jetty-users] how to properly deployDiffie-Hellman on my server
Next by Date: Re: [jetty-users] Jetty http2 client request hangs indefinitely
Previous by thread: Re: [jetty-users] Enabling session resumption
Next by thread: [jetty-users] how to properly deployDiffie-Hellman on my server
Index(es):
- Date
- Thread

Breadcrumbs