DevHeads.net

Postings by Akshar Kanak

variant 2 not getting fixed

Dear team
My Guest os (CentOS 6.5 ,kernel version 2.6.32-696.18.7.el6.x86_64) is
running in ESXI server (VMware ESXi 5.5.0 build-6480324,
patch ESXi550-201709001.zip was applied ) .
I installed all the packages mention in <a href="https://lists.centos.org/" title="https://lists.centos.org/">https://lists.centos.org/</a>
pipermail/centos-announce/2018-January/
The list of installed packages are ->
kernel-debug-devel-2.6.32-696.18.7.el6.i686
kernel-2.6.32-696.18.7.el6.x86_64
kernel-doc-2.6.32-696.18.7.el6.noarch
kernel-debug-2.6.32-696.18.7.el6.x86_64
kernel-devel-2.6.32-696.18.7.el6.x86_64
kernel-debug-devel-2.6.32-696.18.7.el6.x86_64
libreport-plugin

enforcing SSL renegotiation for AES-GCM based cipher suites

Dear team
In mod_ssl is there any option to enforce SSL renegotiation after
certain amount of data has been transfered on SSL connection .
If we are using cipher suite which has AES-GCM as encryption algorithm
, then its required that when the counter overlaps or overflows then
SSL renegotiation should happen .
In AES-GCM the final counter is
[4 bytes salt which is negotiated between client and serevr ]
+
[8 bytes of random bytes which are generated for the first time using
RAND_bytes (nonce_explicit).
It is incremented for each TLS packet]
+
[32