httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject [Bug 57600] Presence of SSLCACertificateFile/Path causes root CA of server certificate to appear in the SSL handshake's server Certificate message
Date Wed, 25 Feb 2015 19:15:17 GMT

--- Comment #6 from JDR <> ---
(In reply to Kaspar Brand from comment #5)
> Lobbying with the OpenSSL guys for making SSL_MODE_NO_AUTO_CHAIN
> configurable via SSL_CONF (i.e. via "SSLOpenSSLConfCmd Options ...") would
> seem like the best way to escape further tweaking in mod_ssl.

Agreed, SSLOpenSSLConfCmd sounds like the ideal place for this kind of
configuration details, and certainly preferable over tweaking the existing
mod_ssl code base. I'll consider taking the case up with the OpenSSL folks,

(In reply to Kaspar Brand from comment #1)
> This is actually a "feature" of OpenSSL

Thanks for your insight on this -- actually very helpful for me since it gives
me an additional option to consider as a potential alternative (though of
course not before gaining a full understanding of the implications). Much

You are receiving this mail because:
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message