Feature #2758
closedOption to disable TLS session tickets
Description
It would be nice if there were a way to prevent Lighttpd from using TLS session tickets.
OpenSSL provides SSL_CTX_set_options(SSL_OP_NO_TICKET), but Lighttpd does not provide any way to set this option in its configuration file. Lighttpd does not appear to register any special ticket handling functionality with OpenSSL either, which means OpenSSL’s default ticket handling will be used which, as I understand it, means a random ticket encryption key will be generated on server startup and never changed. It would be absolutely ideal if Lighttpd were able to rotate ticket keys, but in the absence of such a large change, disabling tickets is a reasonable workaround (this doesn’t affect session IDs, which will still work, only session tickets).
Updated by gstrauss almost 7 years ago
- Status changed from New to Patch Pending
- Target version changed from 1.4.x to 1.4.48
Updated by gstrauss almost 7 years ago
See https://github.com/gstrauss/lighttpd1.4/commit/c09acbeb8a030942d9825b3d0dd01c84e0a0b919 for experimental ssl.openssl.ssl-conf-cmd directive
Updated by gstrauss almost 7 years ago
- Status changed from Patch Pending to Fixed
- % Done changed from 0 to 100
Applied in changeset c09acbeb8a030942d9825b3d0dd01c84e0a0b919.
Updated by gstrauss over 4 years ago
- ASK QUESTIONS IN Forums set to No
For the record (and search engines which may find this), you can disable session tickets in lighttpd since lighttpd 1.4.48 using:ssl.openssl.ssl-conf-cmd = ("Options" => "-SessionTicket")
BTW, restarting the lighttpd daemon has always had the side effect of rotating session ticket encryption keys in openssl.
Future looking: there is work being done to automatically rotate the session ticket encryption keys and that work might make it into lighttpd 1.4.56.
Updated by gstrauss 11 months ago · Edited
As documented in lighttpd TLS docs: Session Tickets lighttpd 1.4.56 and later automatically rotate the session ticket encryption key for mod_openssl, mod_gnutls, mod_mbedtls, and mod_wolfssl -- though not for mod_nss.
Also available in: Atom