Return-Path: 
 <users-return-103209-apmail-httpd-users-archive=httpd.apache.org@httpd.apache.org>
X-Original-To: apmail-httpd-users-archive@www.apache.org
Delivered-To: apmail-httpd-users-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 69282916B
	for <apmail-httpd-users-archive@www.apache.org>;
 Sun, 25 Mar 2012 18:09:38 +0000 (UTC)
Received: (qmail 38329 invoked by uid 500); 25 Mar 2012 18:09:35 -0000
Delivered-To: apmail-httpd-users-archive@httpd.apache.org
Received: (qmail 38300 invoked by uid 500); 25 Mar 2012 18:09:35 -0000
Mailing-List: contact users-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: users@httpd.apache.org
list-help: <mailto:users-help@httpd.apache.org>
list-unsubscribe: <mailto:users-unsubscribe@httpd.apache.org>
List-Post: <mailto:users@httpd.apache.org>
List-Id: <users.httpd.apache.org>
Delivered-To: mailing list users@httpd.apache.org
Received: (qmail 38290 invoked by uid 99); 25 Mar 2012 18:09:35 -0000
Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230)
    by apache.org (qpsmtpd/0.29) with ESMTP; Sun, 25 Mar 2012 18:09:35 +0000
X-ASF-Spam-Status: No, hits=-0.7 required=5.0
	tests=RCVD_IN_DNSWL_LOW,SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (nike.apache.org: domain of covener@gmail.com designates
 209.85.210.173 as permitted sender)
Received: from [209.85.210.173] (HELO mail-iy0-f173.google.com)
 (209.85.210.173)
    by apache.org (qpsmtpd/0.29) with ESMTP; Sun, 25 Mar 2012 18:09:28 +0000
Received: by iafj26 with SMTP id j26so9536818iaf.18
        for <users@httpd.apache.org>; Sun, 25 Mar 2012 11:09:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=mime-version:in-reply-to:references:date:message-id:subject:from:to
         :content-type;
        bh=RuUDxiKAY7LR8z6eL3QVOvUS+HdEAjx631RWbqdXUYs=;
        b=oYmtzjmcUdzHAszB0MOD0XGwEhYCBK+Jmiha0mjvogFfyME7DI6YyNaEMJVeTDetcl
         FaLNuehoEbzRjg46DJrxBwnzR1tatw8iTVnSBJvny7tGQQyvSRNHz66mpQ8iJFKmI+0i
         4tZFcwdnTwT8rciyCtjxkrqRo3zE2P2H66e+AMrueZQidzY5UmOTpLwlHQmOWrBfZfB6
         exY8aKpbPRVaycrqgUi3f9t7plJG/ieC0fX2ZhrQEwTkVErltBXvO5U1B6hunismuEgN
         T+Q4P1P4W3NVBQP73s17RTEw8CB+ML8X/kJ9o6+k8rcCzRyQWOAnOhw4q+gNE4Jd5+LZ
         lU1Q==
MIME-Version: 1.0
Received: by 10.50.159.198 with SMTP id xe6mr4367189igb.74.1332698947118; Sun,
 25 Mar 2012 11:09:07 -0700 (PDT)
Received: by 10.50.89.167 with HTTP; Sun, 25 Mar 2012 11:09:07 -0700 (PDT)
In-Reply-To: 
 <CAHP4M8Um8JSTVCutzjx2WctyUv6_rDb=XM-+okyYARvuZsAjMQ@mail.gmail.com>
References: 
 <CAHP4M8Um8JSTVCutzjx2WctyUv6_rDb=XM-+okyYARvuZsAjMQ@mail.gmail.com>
Date: Sun, 25 Mar 2012 14:09:07 -0400
Message-ID: 
 <CALK=YjOgf_KQGXTKih5OZp0r=O9e=5CJEATvdoyiNpKJXjcuhg@mail.gmail.com>
From: Eric Covener <covener@gmail.com>
To: users@httpd.apache.org
Content-Type: text/plain; charset=ISO-8859-1
Subject: Re: [users@httpd] How does client decrypt data in a HTTPS-based
 WebDAV transfer

> BUT, HOW IS THE CLIENT ABLE TO DECRYPT THE DATA? (I have been running both
> webdav server and client on the same machine; so it might very well
> be the case that some info from "ssl.conf" and/or "httpd.conf" is being used
> at the client side. However, I am just guessing ...

Under SSL, the client and server negotiate a shared secret used to
encrypt/decrypt the data.

They can set this up securely because the client starts this process
with info encrypted with the servers public key.

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org