httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Igor Galić <i.ga...@brainsware.org>
Subject Re: mod_ssl ssl_util_stapling.c warnings
Date Fri, 24 Dec 2010 16:24:03 GMT
> > More significantly the code hasn't been tested extensively "in the
> field"
> > so there may be problems that have yet to be uncovered.
> 
> That's a fair point.
> 
> > My personal opinion would be to, at least initially, require an
> explicit
> > directive to enable it and leave the option in future to have it
> enabled by
> > default.
> 
> Makes sense.  "tested extensively in the field" isn't likely to happen
> until 
> httpd 2.4.x is released and significant numbers of sites upgrade. 
> Hopefully 
> it would be "safe" to enable it by default in a fairly early 2.4.x
> point 
> release.
> 
> > Anyone else have any thoughts on the matter?

If we want to see more extensive testing in the field,
then this is the right time to make 'On' the default.
 
> > Steve.
> 
> Rob Stradling
> Senior Research & Development Scientist
> COMODO - Creating Trust Online

i

-- 
Igor Galić

Tel: +43 (0) 664 886 22 883
Mail: i.galic@brainsware.org
URL: http://brainsware.org/

Mime
View raw message