Firewall Wizards mailing list archives

RE: SSL (Apache) <-> Browser

From: Jonathan Sartin <jonathan.sartin () rubus com>
Date: Thu, 8 Feb 2001 10:10:23 -0000

Hi,

Check the mod_ssl FAQ and mail list archives (I assume that you're using
some apache/openssl/mod_ssl combination). Your problem is extensively
discussed there. Resolution is in the hands of your server admin.

As a starting point:

1. Is a Global Server ID in use (a certificate that uses an intermediate CA
certificate to "Step-up" the session key for old "export" servers and
browsers)? If so you need to exclude EXPORT56 from the cipher suite in the
server config.
2. Is the apache server configured to support an SSL session cache? It
probably needs to be.

Oh, and don't bother chasing this through MS support unless you are a
masochist. 

Cheers ..... Jonathan.
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards

Current thread:

SSL (Apache) <-> Browser Scott, Richard (Feb 07)
- Re: SSL (Apache) <-> Browser Ng Pheng Siong (Feb 11)
- <Possible follow-ups>
- RE: SSL (Apache) <-> Browser Scott, Richard (Feb 08)
- RE: SSL (Apache) <-> Browser Jonathan Sartin (Feb 08)