httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 35083] - Certificate validation problems trapping
Date Thu, 25 Jan 2007 12:26:41 GMT
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG·
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=35083>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND·
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=35083


marc.stern@approach.be changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         AssignedTo|bugs@httpd.apache.org       |marc.stern@approach.be
             Status|REOPENED                    |ASSIGNED




------- Additional Comments From marc.stern@approach.be  2007-01-25 04:26 -------
Created an attachment (id=19457)
 --> (http://issues.apache.org/bugzilla/attachment.cgi?id=19457&action=view)
Patch based on SSL_CVERIFY_OPTIONAL_NO_CA

I extended SSL_CVERIFY_OPTIONAL_NO_CA usage to let the session establish,
whatever validation problems happen. This seems to me consistent with comments
in teh code stating that this option should be used for testing purpose, so
everyt certificate should be accepted. If I correctly understood,
"OPTIONAL_NO_CA" should so be replaced everywhere by something like
"IGNORE_ERRORS"; if not, we should add another option.

-- 
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message