httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Dr Stephen Henson <>
Subject Re: TLS renegotiation disabling : mod_ssl and OpenSSL 0.9.8l
Date Wed, 18 Nov 2009 20:25:57 GMT
Jean-Marc Desperrier wrote:
> Dr Stephen Henson wrote:
>> Jean-Marc Desperrier wrote:
>>> Joe Orton wrote:
>>>> Please file a bug and attach all of:
>>>> a) error_log output at "LogLevel debug" for that case
>>>> b) the config snipping that you're using for /authentication
>>>> c) the mod_ssl configuration
>>> This is now done in bug
>>> error.log might have enough info to understand what happens, but I
>>> included everything else needed to repro from scratch.
>> What happens with the latest 0.9.8-stable version of OpenSSL?
> Stephen, what result do you expect from this ?

Basically to rule out ticket issues other things fixed in 0.9.8-stable. A number
of session ticket fixes are in 0.9.8-stable but not in 0.9.8l.

Dr Stephen N. Henson. Senior Technical/Cryptography Advisor,
Open Source Software Institute:
OpenSSL Core team:

View raw message