Justine Tunney 53b9f83e1c Make redbean SSL more tunable ... This change enables SSL compression. It significantly reduces the network load of the testing infrastructure, for free, since this revision didn't need to change any runit protocol code. However we turn it off by default in redbean since no browsers support it. It turns out that some TLSv1.0 clients (e.g. curl command on RHEL5) will send an SSLv2-style ClientHello. These types of clients are usually ten+ years old and were designed to interop with servers ten years older than them. Your redbean is now able to interop with these clients even though redbean doesn't actually support SSLv2 or SSLv3. Please note that the -B flag may be passed to disable this along with TLSv1.0, TLSv1.1, 3DES, &c The following Lua APIs have been added to redbean: - ProgramSslCompression(bool) - ProgramSslCiphersuite(name:str) - ProgramSslPresharedKey(key:str,identity:str) Lastly the DHE ciphersuites have been enabled. IANA recommends DHE and with old clients like RHEL5 it's the only perfect forward secrecy they implement.		2021-08-09 07:38:57 -07:00
..
demo	Fix bugs and make improvements to redbean	2021-08-06 14:18:34 -07:00
.init.lua	Add SSL to redbean	2021-06-24 13:20:50 -07:00
counters.inc	Make improvements to redbean	2021-07-08 15:56:23 -07:00
dig.c	Make minor revisions to previous change	2021-06-30 10:45:27 -07:00
echoserver.c	Remove garbage collector macro from header (#114)	2021-03-07 20:23:29 -08:00
favicon.ico	Make major improvements to redbean and libraries	2021-04-18 12:34:15 -07:00
help.txt	Make redbean SSL more tunable	2021-08-09 07:38:57 -07:00
lsqlite3.c	Tune SQLite build for redbean (#97)	2021-06-10 08:00:08 -07:00
net.mk	Make redbean SSL more tunable	2021-08-09 07:38:57 -07:00
redbean.c	Make redbean SSL more tunable	2021-08-09 07:38:57 -07:00
redbean.png	Make improvements	2020-09-14 00:02:34 -07:00
wb.c	Add SNI support to redbean and improve SSL perf	2021-07-23 13:56:13 -07:00