Version 3 (modified by Daniel Kahn Gillmor, 8 years ago) (diff)



mod_gnutls uses the GnuTLS library to provide SSL 3.0, TLS 1.0, TLS 1.1, and TLS 1.2 encryption for Apache HTTPD. It is similar to mod_ssl in purpose, but it supports some features and protocols that mod_ssl does not, and it does not use OpenSSL.


  • Support for SSL 3.0
  • Support for latest TLS Protocols (1.0|1.1|1.2)
  • Support for client certificates.
  • Support for RFC:5746 Safe renegotiation.
  • Support for RFC:6091 OpenPGP certificate authentication.
  • Support for RFC:5054 SRP authentication.
  • Support for Server Name Indication.
  • Distributed SSL/TLS Session Cache via Memcached.
  • Local SSL/TLS Session Cache using GDBM or DBM (needs Berkeley DBM support).
  • Support for Session Tickets instead of Session Caching
  • Compatible with mod_ssl's Enviromental Variables.
  • Small and focused code base.
  • Support for SSL/TLS proxy termination.