XF 2.1 Is unmodified XenForo 2.1 safe for TLSv1.3 0-RTT?

Thread starter niemiro
Start date May 19, 2019
Tags

0-rtt security tls

niemiro

New member

May 19, 2019

In particular, can we enable 0-RTT for all GET requests in core XenForo, even those with parameters?

In other words, do you guarantee that all GET requests in XenForo are idempotent?

(I understand that we must ourselves check all our add-ons are secure against replay attacks.)

Thank you.

You must log in or register to reply here.

Facebook X (Twitter) LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

We value your privacy

We use essential cookies to make this site work, and optional cookies to enhance your experience.

See further information and configure your preferences

Accept all cookies Reject optional cookies
Essential cookies

These cookies are required to enable core functionality such as security, network management, and accessibility. You may not reject these.

Optional cookies

We deliver enhanced functionality for your browsing experience by setting these cookies. If you reject them, enhanced functionality will be unavailable.

Third-party cookies

Cookies set by third parties may be required to power functionality in conjunction with various service providers for security, analytics, performance or advertising purposes.

Detailed cookie usage

Privacy policy

Top Bottom

XF 2.1 Is unmodified XenForo 2.1 safe for TLSv1.3 0-RTT?

niemiro

New member

We value your privacy