Changes between Initial Version and Version 1 of Ticket #1977
- Timestamp:
- 05/14/20 00:58:44 (5 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #1977 – Description
initial v1 1 1 The TLS specification (RFC 8446) section 5.4 defines optional Record Padding: https://tools.ietf.org/html/rfc8446#section-5.4 2 2 3 As a security improvement, I suggest that httpdimplement random record padding.3 As a security improvement, I suggest that nginx implement random record padding. 4 4 5 5 Random record padding would mitigate the BREACH attack (and other similar) vulnerabilities.
