Pinboard (jm)
https://pinboard.in/u:jm/public/
recent bookmarks from jmWhy no SSL ? — Varnish version 4.0.0 documentation2014-04-13T07:22:04+00:00
https://www.varnish-cache.org/docs/trunk/phk/ssl.html
jmThere is no other way we can guarantee that secret krypto-bits do not leak anywhere they should not, than by fencing in the code that deals with them in a child process, so the bulk of varnish never gets anywhere near the certificates, not even during a core-dump.
Now looking pretty smart, post-Heartbleed.]]>ssl tls varnish open-source poul-henning-kemp https http proxies security codinghttps://pinboard.in/https://pinboard.in/u:jm/b:0b5b2afbfad7/