httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject DO NOT REPLY [Bug 49731] SSLVerifyClient and SSL virtual hosts don't work quite right
Date Tue, 10 Aug 2010 18:34:23 GMT

--- Comment #3 from Ruediger Pluem <> 2010-08-10 14:34:20 EDT ---
(In reply to comment #2)

> The problem seems to persist in version 2.2.16. I have two site configurations
> where one uses 'SSLClientVerify optional_no_ca' and another uses
> 'SSLClientVerify none'. When using a TLS client (one that prints out the SNI
> hostname that it is sending the server), I receive a CertificateRequest for

Are you sure that your httpd 2.2.16 was compiled against a SNI capable openssl
and that it is running against one? E.g RHEL 4 / 5 provided openssl packages
are NOT SNI capable.

> both sites. The content served does (correctly) depend on the hostname
> provided, so the virtual host option is functioning correctly.
> I will try to confirm this using two vanilla configurations and add them to
> this bug (and reopen it if confirmed). Perhaps that will reveal it is only a
> configuration issue. I assume Apache 2.2.16 is the latest version you're
> referring to of 2.2? I can find tarballs for 2.3.6 but I didn't think that you
> meant Apache 2.3.

Yes, I meant the latest 2.2.

Configure bugmail:
------- You are receiving this mail because: -------
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message