Stefan Eissing

I made the necessary changes in apache's `trunk` and `2.4.x` branches and configure also checks for a more recent rustls-ffi version.

And there are experts that advice the opposite: make the handshake totally scriptable by an admin: . The way forward depends on the design goal of `crustls` and `mod_tls`: if...

Besides, the same functionality is used in curl as well, where one can specify a cipher on the command line to verify a server's capabilities. Used in mod_tls test suite,...

`rustls` itself supports setting cipher suites and exposes the ones it supports for iteration. It's an explicit method to create a client config. A discussion of this is a good...

> > Besides certain business sectors with legal requirements, there is the practical issue for some that they need to traverse ssl fingerprinting gateways. They are looking for ways to...

As a general purpose web server, Apache is not targeted on a specific user group or business. I would like to provide safe defaults for people without specific needs. For...

I am a bit confused. Does the browser make WebSocket connections over HTTP/2? It should not, if the server does not support it. Is this another request that produces the...

If mod_http2 is indeed polling in a loop, as your stacktrace indicates, something weird is going on. The trace is a call from `h2_session.c:1911` where the session is in state...

Thanks for the update. This is a mysterious one indeed.

Since mod_h2 now RSTs the stream after 100 incoming headers exceeding the limit, we could safely raise the number of frames. Some people, I learned, work with really huge headers.