Disable TLS compression
Bug #1050189 reported by
François Marier
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Libravatar (obsolete) |
Fix Released
|
High
|
François Marier |
Bug Description
Once we are on Apache 2.4.3, we should disable TLS compression:
https:/
there are rumors that it can lead to an attack on TLS:
http://
https:/
This has been deployed on production.