httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 44858] Systematic SSL session renegociation, client cert, Firefox >= 2.0.13
Date Tue, 02 Jun 2009 09:50:47 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=44858


juan-manuel.perez@tecsidel.es changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEEDINFO                    |NEW




--- Comment #4 from juan-manuel.perez@tecsidel.es  2009-06-02 02:50:45 PST ---
We have exactly this problem. As I see this bug was frozen, we'll reopen it,
providing some more information. I expect it is enough for you to check it.
The problem is not really severe if you use Firefox 2, because when the user is
prompted for a certificate, it has the option to 'Remember this decision'. But
with Firefox3 this option has been removed, and now users are prompted
continuously for a certificate.
We have checked it with the latest available binary distribution
(apache_2.2.8-win32-x86-openssl-0.9.8g.msi).
We provide the logs (with debug level on).
We also provide the used configuration files, a test page, and a certificate to
reproduce the problem, and a document explaining the problem.
We have already tested other configurations, but they either don't work as
expected, or are not valid for our requirements: we need some pages to require
client certificate, and others not to. We are looking for a workaround, but the
one we are thinking of is not very nice...

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message