Eddy Nigg wrote, On 2009-03-21 15:08: > On 03/21/2009 10:43 PM, Nelson B Bolyard: >> The consensus of which you speak is actually a consensus among users of >> those crappy servers that, with those servers, client auth is unusable. >> I am part of that consensus. But I do not agree that changing the >> client to reward crappy servers is any part of the solution. And I >> "vote with my wallet" on all those crappy servers. I won't use them. >> > > Wowowow.....slow down a bit my dear friend. As I would defend Mr. > Bolyard and this team elsewhere I'm going to defend Mr. Engelschall and > his crew here...interestingly both are serving a similar community and > work in a similar eco-system. > > Just for your knowledge, those crappy servers you are attacking here are > serving the majority of web sites. The crappy server, aka A-Patchy > server is very well tested and in use at millions of service and content > providers.
I don't think we have a generic problem with Apache, Eddy. Apache can be configured to work well with client auth. It often is not, but that's an admin problem. The servers of which I wrote that are configured by default to request client auth, with server session cache disabled, and dropping all connections that actually do client auth, are not Apache servers, AFAIK. -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto