httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 53006] SSLProxy to server with wildcard certificate requires 'SSLProxyCheckPeerCN off'
Date Wed, 04 Apr 2012 14:19:52 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=53006

--- Comment #4 from Petter Berntsen <petterb@gmail.com> 2012-04-04 14:19:52 UTC ---
I know about that one (i actually triggered Humbedooh to add the last part ;)

But i don't think it's clear that a server with a valid wildcard certificate
will stop working.

That would entail one knows SSLProxyCheckPeerCN does not acknowledge wildcard
certificates.


Relevant part of bullet point for reference:
SSLProxyCheckPeerCN and SSLProxyCheckPeerExpire now default to On, causing
proxy requests to HTTPS hosts with bad or outdated certificates to fail with a
502 status code (Bad gateway)

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message