httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 29569] - POST over HTTPS with verify client certificate
Date Wed, 07 Jul 2004 14:09:26 GMT
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=29569>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=29569

POST over HTTPS with verify client certificate

jorton@redhat.com changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|                            |DUPLICATE



------- Additional Comments From jorton@redhat.com  2004-07-07 14:09 -------
I think this patch is reversed?  The current logic is 

  if (renegotiate && !renegotiate_quick && (r->method_number == M_POST))
{

i.e. if a renegotiation is needed, and a quick renegotiation isn't possible, and
the request is a POST request, then log the error and return a 403.  Which makes
sense.

If a renegotiation is *not* needed, then the function does not attempt one anyway.  

Presuming this is a duplicate of 12355 unless there's anything subtle I'm missing.

*** This bug has been marked as a duplicate of 12355 ***

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message