From 2fe1e2d109fd84ec7a615c2d3d6740ff001dbf40 Mon Sep 17 00:00:00 2001
From: James Moger <james.moger@gitblit.com>
Date: Fri, 29 Mar 2013 17:47:44 -0400
Subject: [PATCH] Document SNI workaround for Java-based clients

---
 releases.moxie |    3 ++-
 1 files changed, 2 insertions(+), 1 deletions(-)

diff --git a/releases.moxie b/releases.moxie
index a274b07..15c7da9 100644
--- a/releases.moxie
+++ b/releases.moxie
@@ -9,7 +9,8 @@
 	- Raw servlet was insecure. If someone knew the exact repository name and path to a file, the raw blob could be retrieved bypassing security constraints. (issue 198)
     fixes:
      - Could not reset settings with $ or { characters through Gitblit Manager because they are not properly escaped
-	 - Added more error checking to blob page
+	 - Added more error checking to blob page and blame page
+	 - Disable SNI extensions for client SSL connections
 	 - Fix NPE when getting user's fork without repository list caching (issue 182)
 	 - Fix internal error on folder history links (issue 192)
 	 - Fixed incorrect icon file name for .doc files (issue 200)

--
Gitblit v1.9.1