Don't allow SSL proxy connections to be reused
authorTom Hughes <tom@compton.nu>
Fri, 29 Aug 2014 15:47:56 +0000 (16:47 +0100)
committerTom Hughes <tom@compton.nu>
Fri, 29 Aug 2014 15:47:56 +0000 (16:47 +0100)
commit2c2bb4b27e849ddbf5dcbeb4c722f08f82c14693
treee41b438e5f04d1b3e038eaa0bc107816786c31cc
parent9ae02e61f69a28e986eff71a64605a0cadb2df26
Don't allow SSL proxy connections to be reused

If we allow reuse of SSL connections then we may sent a Host
header that doesn't match the name sent in SNI when the connection
was setup, and the backend will then reject it.
cookbooks/web/templates/default/apache.frontend.erb