[Freeswitch-users] TLS re-negotiation attack on SIP/TLS of FreeSWITCH?
Fabio Pietrosanti (naif)
lists at infosecurity.ch
Wed Sep 22 07:23:45 PDT 2010
Hi all,
i read about the TLS-RENEGOTIATION vulnerability:
http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html
http://www.sslshopper.com/article-ssl-and-tls-renegotiation-vulnerability-discovered.html
www.phonefactor.com/sslgapdocs/Renegotiating_TLS.pdf
Does the FreeSWITCH SIP/TLS implementation suffer from the TLS
Renegotiation vulnerability or the TLS-renegotiation it's disabled by
default, in how OpenSSL is used?
Fabio Pietrosanti
More information about the FreeSWITCH-users
mailing list