From b8d21b82454395cb5c5e8473223a10175b23ea51 Mon Sep 17 00:00:00 2001 From: Simon Ruderich Date: Thu, 19 Sep 2013 03:20:31 +0200 Subject: [PATCH] NEWS: Minor improvements. --- NEWS | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/NEWS b/NEWS index 3f3c663..3078a20 100644 --- a/NEWS +++ b/NEWS @@ -11,12 +11,13 @@ NEWS certtool --generate-dh-params --sec-param high --outfile proxy-dh.pem -- Use "SECURE" as GnuTLS priority string which disallows insecure algorithms. +- Use "SECURE" (replacing "NORMAL") as GnuTLS priority string which disallows + insecure algorithms. - Add -a option, authentication for tlsproxy via basic digest authentication. - Add new debug level (-d 3) for even more debug output, including information about the current TLS session. - Allow rehandshakes for server connections (%SAFE_RENEGOTIATION is forced to - prevent issues). + prevent security issues). - Use pre-generated Diffie-Hellman parameters in proxy-dh.pem. - Code cleanup. - Better error handling. -- 2.45.2