On 2016-11-23 14:30, Ruediger Pluem wrote: > You can still have that if you configure SSLVerify on virtual server > layer,
Right, no renegotiation necessary in that case. Makes sense, thanks. > but not on directory level. Well, apparently I can't have that now either. :-( >> is functionality removed in new protocols? > As far as I understand renegotiation has (and definitely had in the > past) serious security issues. Hence it is removed. Ok, just out of curiosity: was the design flawed or the implementation? Cheers, K. C. -- regards Helmut K. C. Tessarek lookup http://pool.sks-keyservers.net for KeyID 0xC11F128D /* Thou shalt not follow the NULL pointer for chaos and madness await thee at its end. */