On Fri, Nov 06, 1998, James wrote:
> I get no result from an SSLRequiredCiphers line in a <VirtualHost> block
> using mod_ssl-2.0.13-1.3.3. I do get a result from SSLBanCipher in a
> <Directory> block. In particular, this is with respect to EXP-RC4-MD5 on
> Navigator.
>
> Can anyone clue me in? Is SSLRequiredCiphers suppose to be working?
As we discovered yesterday the per-server configuration merging function in
2.0.x missed to merge the SSLRequiredCiphers information, so using
SSLRequiredCiphers in a <VirtualHost> had no effect. It's already fixed and
will be available with mod_ssl 2.0.15 tomorrow. In the meantime here is the
patch:
Index: mod_ssl.c
===================================================================
--- mod_ssl.c 1998/11/01 12:34:13 1.34
+++ mod_ssl.c 1998/11/04 18:05:13
@@ -280,6 +280,7 @@
cfgMergeString(szCACertificatePath);
cfgMergeString(szCACertificateFile);
cfgMergeString(szLogFile);
+ cfgMergeString(szReqCiphers);
cfgMergeInt(nVerifyDepth);
cfgMerge(nVerifyClient, VERIFY_UNSET);
cfgMergeBool(bFakeBasicAuth);
Apply it to the mod_ssl.c source file, re-build and try again, please.
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
