projects / tomcat7.0 / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 614513f)
Document allowUnsafeLegacyRenegotiation
authormarkt <markt@13f79535-47bb-0310-9956-ffa450edef68>
Tue, 10 Nov 2009 15:43:17 +0000 (15:43 +0000)
committermarkt <markt@13f79535-47bb-0310-9956-ffa450edef68>
Tue, 10 Nov 2009 15:43:17 +0000 (15:43 +0000)
git-svn-id: https://svn.apache.org/repos/asf/tomcat/trunk@834510 13f79535-47bb-0310-9956-ffa450edef68

webapps/docs/config/http.xml patch | blob | history

diff --git a/webapps/docs/config/http.xml b/webapps/docs/config/http.xml
index d20865d..e7ed38c 100644 (file)
--- a/webapps/docs/config/http.xml
+++ b/webapps/docs/config/http.xml
@@ -789,6 +789,13 @@
       certificates.</p>
     </attribute>
     
+    <attribute name="allowUnsafeLegacyRenegotiation" required="false">
+      <p>Is unsafe legacy TLS renegotiation allowed which is likely to expose
+      users to CVE-2009-3555, a man-in-the-middle vulnerability in the TLS
+      protocol that allows an attacker to inject arbitrary data into the user's
+      request. If not specified, a default of <code>false</code> is used.</p>
+    </attribute>
+
   </attributes>
 
   <p>For more information, see the
Unnamed repository; edit this file to name it for gitweb.