diff options
| author | Nick Mathewson <nickm@torproject.org> | 2011-12-07 21:10:32 -0500 |
|---|---|---|
| committer | Nick Mathewson <nickm@torproject.org> | 2011-12-07 21:12:26 -0500 |
| commit | 00fae9a500475d7ebf1dd0f56c7fc78e2567c818 (patch) | |
| tree | ae9ef70142e668bb618ef4955b692250ea633a9b | |
| parent | 8bb853b2a23e56505d598ee9c38ce56b4afe248c (diff) | |
| download | tor-00fae9a500475d7ebf1dd0f56c7fc78e2567c818.tar tor-00fae9a500475d7ebf1dd0f56c7fc78e2567c818.tar.gz | |
Remove 4312 from the changelog.
| -rw-r--r-- | ChangeLog | 9 |
1 files changed, 1 insertions, 8 deletions
@@ -1,4 +1,4 @@ -Changes in version 0.2.3.9-alpha - 2011-1?-?? +Changes in version 0.2.3.9-alpha - 2011-12-?? o Major features: - When using OpenSSL 1.0.0 or later, use OpenSSL's counter mode implementation. It makes AES_CTR about 7% faster than our old one @@ -9,15 +9,8 @@ Changes in version 0.2.3.9-alpha - 2011-1?-?? censorship by allowing bridges to use protocol obfuscation plugins. It implements the 'managed proxy' part of proposal 180. Implements ticket 3472. - - Block excess renegotiations even if they are RFC5746 compliant. - This security fix mitigates potential SSL Denial of Service attacks - that use SSL renegotiation as a way of forcing the server to perform - unneeded computationally expensive SSL handshakes. Implements - ticket 4312. o Major bugfixes: - - Teach Tor how to notice excess renegotiation attempts before it - receives the first data SSL record. Fixes part of ticket 4312. - Only use the EVP interface when AES acceleration is enabled, to avoid a 5-7% performance regression. Resolves issue 4525; bugfix on 0.2.3.8-alpha. |