httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Dr Stephen Henson <shen...@oss-institute.org>
Subject Re: TLS renegotiation disabling : mod_ssl and OpenSSL 0.9.8l
Date Wed, 18 Nov 2009 20:25:57 GMT
Jean-Marc Desperrier wrote:
> Dr Stephen Henson wrote:
>> Jean-Marc Desperrier wrote:
>>> Joe Orton wrote:
>>>> Please file a bug and attach all of:
>>>>
>>>> a) error_log output at "LogLevel debug" for that case
>>>> b) the config snipping that you're using for /authentication
>>>> c) the mod_ssl configuration
>>>
>>> This is now done in bug
>>> https://issues.apache.org/bugzilla/show_bug.cgi?id=48215
>>>
>>> error.log might have enough info to understand what happens, but I
>>> included everything else needed to repro from scratch.
>>
>> What happens with the latest 0.9.8-stable version of OpenSSL?
> 
> Stephen, what result do you expect from this ?
> 

Basically to rule out ticket issues other things fixed in 0.9.8-stable. A number
of session ticket fixes are in 0.9.8-stable but not in 0.9.8l.

Steve.
-- 
Dr Stephen N. Henson. Senior Technical/Cryptography Advisor,
Open Source Software Institute: www.oss-institute.org
OpenSSL Core team: www.openssl.org

Mime
View raw message