sftcd
sftcd
Sorry, I don't have enough context there to help. Can you say what client you were using and what server build and for what web site? Ta, S.
On 18/10/2020 23:53, Glenn Strauss wrote: > [Posting my notes here to checkpoint my work. Please forgive the > noise. I am happy to continue development and discussion here or...
Hiya, On 27/03/2021 17:26, Glenn Strauss wrote: > @sftcd I am still interested in your thoughts here. > > Is your forward development on your master branch? What branch should...
Hiya, So I've finally gotten back to this. What I've done so far is: - moved from ESNI->ECH (currently draft-10 of the spec) - rebased with lighttpd1.4 a few days...
Cool - looking at that now. I'd bet your approach to handlng the config settings is better than mine so it might make sense if I try model the new...
yeah, SSL_get_esni_status goes to SSL_ech_get_status (sorry - I oscillated on that a few times;-) I have code for that added locally that's not yet pushed/working - what's pushed is enough...
yeah, sorry - those esni files will shortly disappear and aren't needed for ECH
Yep, for now I've moved to a single PEM file - figured it was simpler to just provide one way to do things
those can be generated using an openssl command now btw see "openssl ech -h" for the few associated details
also - there're a few things only implemented as stubs for ECH (e.g. ``SSL_CTX_ech_server_flush_keys()``) I'll flesh 'em out as I go but just have enough for now that ECH will...