Project

General

Profile

Actions
Copy link

Feature #2758

closed

Option to disable TLS session tickets

Added by Hawk777 over 7 years ago. Updated 5 months ago.

Status:
Fixed
Priority:
Normal
Category:
TLS
Target version:
1.4.48
ASK QUESTIONS IN Forums:
No

Description

It would be nice if there were a way to prevent Lighttpd from using TLS session tickets.

Rationale: https://timtaubert.de/blog/2014/11/the-sad-state-of-server-side-tls-session-resumption-implementations/

OpenSSL provides SSL_CTX_set_options(SSL_OP_NO_TICKET), but Lighttpd does not provide any way to set this option in its configuration file. Lighttpd does not appear to register any special ticket handling functionality with OpenSSL either, which means OpenSSL’s default ticket handling will be used which, as I understand it, means a random ticket encryption key will be generated on server startup and never changed. It would be absolutely ideal if Lighttpd were able to rotate ticket keys, but in the absence of such a large change, disabling tickets is a reasonable workaround (this doesn’t affect session IDs, which will still work, only session tickets).

Actions
Copy link
 #1

Updated by gstrauss over 7 years ago

  • Category set to TLS
Actions
Copy link
 #2

Updated by gstrauss over 6 years ago

  • Status changed from New to Patch Pending
  • Target version changed from 1.4.x to 1.4.48
Actions
Copy link
 #3

Updated by gstrauss over 6 years ago

Actions
Copy link
 #4

Updated by gstrauss over 6 years ago

  • Status changed from Patch Pending to Fixed
  • % Done changed from 0 to 100
Actions
Copy link
 #5

Updated by gstrauss almost 4 years ago

  • ASK QUESTIONS IN Forums set to No

For the record (and search engines which may find this), you can disable session tickets in lighttpd since lighttpd 1.4.48 using:
ssl.openssl.ssl-conf-cmd = ("Options" => "-SessionTicket")

BTW, restarting the lighttpd daemon has always had the side effect of rotating session ticket encryption keys in openssl.

Future looking: there is work being done to automatically rotate the session ticket encryption keys and that work might make it into lighttpd 1.4.56.

Actions
Copy link
 #6

Updated by gstrauss 5 months ago · Edited

As documented in lighttpd TLS docs: Session Tickets lighttpd 1.4.56 and later automatically rotate the session ticket encryption key for mod_openssl, mod_gnutls, mod_mbedtls, and mod_wolfssl -- though not for mod_nss.

Actions
Copy link

Also available in: Atom