Bug#762619: apache2: Don't let TLS session tickets botch PFS

To: Rodrigo Campos <rodrigo@sdfg.com.ar>, 762619@bugs.debian.org
Subject: Bug#762619: apache2: Don't let TLS session tickets botch PFS
From: Stefan Fritsch <sf@sfritsch.de>
Date: Tue, 23 Sep 2014 22:41:49 +0200
Message-id: <[🔎] 3247114.vy7pozed5L@k>
Reply-to: Stefan Fritsch <sf@sfritsch.de>, 762619@bugs.debian.org
In-reply-to: <[🔎] 20140923193004.GA3974@sdfg.com.ar>
References: <[🔎] 20140923193004.GA3974@sdfg.com.ar>

On Tuesday 23 September 2014 20:30:04, Rodrigo Campos wrote:
> I tried to do some tests to see if maybe a reload was enough
> (doesn't cause downtime :)) to re-generate the randomly generated
> session ticket key at startup.  But let me be very clear about
> this: I'm not a security expert (far from that) nor I have any deep
> knowledge of TLS, session resumption, etc. I just did some tests
> that I'm not 100% sure what they mean.

Yes, a graceful reload is enough to generate a new session ticket key. 
See http://mail-archives.apache.org/mod_mbox/httpd-dev/201309.mbox/%3C52248C40.7070206%40opensslfoundation.com%3E

This means that in the default configuration in wheezy, the session 
ticket key is kept for one week. That is not optimal, but IMHO it is 
not a severe problem either.

In 2.4.10-2, the log rotation has been changed from weekly to daily 
which gives some improvement.

Reply to:

Follow-Ups:
- Bug#762619: apache2: Don't let TLS session tickets botch PFS
  - From: Rodrigo Campos <rodrigo@sdfg.com.ar>

References:
- Bug#762619: apache2: Don't let TLS session tickets botch PFS
  - From: Rodrigo Campos <rodrigo@sdfg.com.ar>

Prev by Date: Bug#760858: marked as done (apache2 service restart fails and cannot get any relevant info. why it fails.)
Next by Date: Bug#762619: I'm using MPM prefork
Previous by thread: Bug#762619: apache2: Don't let TLS session tickets botch PFS
Next by thread: Bug#762619: apache2: Don't let TLS session tickets botch PFS
Index(es):
- Date
- Thread