Changeset 743e31f in mod_gnutls


Ignore:
Timestamp:
Jun 20, 2016, 2:51:01 PM (7 years ago)
Author:
Thomas Klute <thomas2.klute@…>
Branches:
asyncio, debian/master, debian/stretch-backports, main, master, proxy-ticket, upstream
Children:
fc124e9
Parents:
e9ef72c
git-author:
Thomas Klute <thomas2.klute@…> (06/20/16 13:46:02)
git-committer:
Thomas Klute <thomas2.klute@…> (06/20/16 14:51:01)
Message:

Documentation: Use "TLS" as the generic term instead of "SSL"

File:
1 edited

Legend:

Unmodified
Added
Removed

  • doc/mod_gnutls_manual.mdwn

    re9ef72c r743e31f  
    6868-------------
    6969
    70 Configure SSL Session Cache
     70Configure TLS Session Cache
    7171
    7272    GnuTLSCache [dbm|gdbm|memcache|none] [PATH|SERVERLIST|-]
     
    7575Context: server config
    7676
    77 This directive configures the SSL Session Cache for `mod_gnutls`.
     77This directive configures the TLS Session Cache for `mod_gnutls`.
    7878This could be shared between machines of different architectures. If a
    7979DBM cache is used, access is serialized using the `gnutls-cache`
     
    8181
    8282`dbm` (Requires Berkeley DBM)
    83 :   Uses the default Berkeley DB backend of APR DBM to cache SSL
     83:   Uses the default Berkeley DB backend of APR DBM to cache TLS
    8484    Sessions results.  The argument is a relative or absolute path to
    8585    be used as the DBM Cache file. This is compatible with most
     
    8888
    8989`gdbm`
    90 :   Uses the GDBM backend of APR DBM to cache SSL Sessions results.
     90:   Uses the GDBM backend of APR DBM to cache TLS Sessions results.
    9191
    9292    The argument is a relative or absolute path to be used as the DBM Cache
     
    9494
    9595`memcache`
    96 :   Uses a memcached server to cache the SSL Session.
     96:   Uses a memcached server to cache the TLS Session.
    9797
    9898    The argument is a space separated list of servers. If no port
     
    101101
    102102`none`
    103 :   Turns off all caching of SSL Sessions.
     103:   Turns off all caching of TLS Sessions.
    104104
    105105    This can significantly reduce the performance of `mod_gnutls` since
     
    111111--------------------
    112112
    113 Timeout for SSL Session Cache expiration
     113Timeout for TLS Session Cache expiration
    114114
    115115    GnuTLSCacheTimeout SECONDS
     
    118118Context: server config
    119119
    120 Sets the timeout for SSL Session Cache entries expiration.  This
     120Sets the timeout for TLS Session Cache entries expiration.  This
    121121directive is valid even if Session Tickets are used, and indicates the
    122122expiration time of the ticket in seconds.
     
    227227Context: server config, virtual host, directory, .htaccess
    228228
    229 This directive controls the use of SSL Client Certificate
     229This directive controls the use of TLS Client Certificate
    230230Authentication. If used in the .htaccess context, it can force TLS
    231231re-negotiation.
    232232
    233233`ignore`
    234 :   `mod_gnutls` will ignore the contents of any SSL Client Certificates
     234:   `mod_gnutls` will ignore the contents of any TLS Client Certificates
    235235    sent. It will not request that the client sends a certificate.
    236236
     
    622622======================
    623623
    624 Simple Standard SSL Example
     624Simple Standard TLS Example
    625625---------------------------
    626626
    627 The following is an example of standard SSL Hosting, using one IP
     627The following is an example of standard TLS Hosting, using one IP
    628628Addresses for each virtual host
    629629
     
    632632     GnuTLSCache gdbm /var/cache/www-tls-cache
    633633     GnuTLSCacheTimeout 500
    634      # With normal SSL Websites, you need one IP Address per-site.
     634     # With normal TLS Websites, you need one IP Address per-site.
    635635     Listen 1.2.3.1:443
    636636     Listen 1.2.3.2:443
     
    682682
    683683`mod_gnutls` can also use "Server Name Indication", as specified in
    684 RFC 3546.  This allows hosting many SSL Websites, with a Single IP
     684RFC 3546.  This allows hosting many TLS Websites, with a Single IP
    685685Address.  Currently all the recent browsers support this
    686686standard. Here is an example, using SNI: ` `
     
    689689     # Load the module into Apache.
    690690     LoadModule gnutls_module modules/mod_gnutls.so
    691      # With normal SSL Websites, you need one IP Address per-site.
     691     # With normal TLS Websites, you need one IP Address per-site.
    692692     Listen 1.2.3.1:443
    693693     # This could also be 'Listen *:443',
     
    744744     # Load the module into Apache.
    745745     LoadModule gnutls_module modules/mod_gnutls.so
    746      # Using 4 memcache servers to distribute the SSL Session Cache.
     746     # Using 4 memcache servers to distribute the TLS Session Cache.
    747747     GnuTLSCache memcache "mc1.example.com mc2.example.com mc3.example.com mc4.example.com"
    748748     GnuTLSCacheTimeout 600
Note: See TracChangeset for help on using the changeset viewer.