Problem summary.
After moving our web site from an Apache 1.3.9 (do not have exact
modssl/openssl versions)
to Apache 1.3.11 openssl 0.9.4 and modssl 2.5.1-1.3.11, we started to
receive secure channel errors on some IE clients. In my testing, these
problems seemed to be version specific, but other users reported problems
with versions of IE 5 that worked for me. They were running over slower
connections.
Because I am an Apache/SSL/mod-perl/mason novice, it took me a while to get
a good test environment in place (I am a couple of hundred miles from the
failing server).
Doing a line by line analysis of http.conf I discovered that the failing
server had this option:
SSLSessionCache none
While the working server had
SSLSessionCache dbm:/http/logs/ssl_scache
Changing the working server to
SSLSessionCache none
caused the same failures to occur on that server.
Changing the failing server to
SSLSessionCache dbm:/http/logs/ssl_scache
Fixed the problems in that server.
Before I recommend a documentation update to Ralf, I would like some more
information from the more experienced among you.
Is anybody running Apache 1.3.11/modssl 2.5.1 or later with
SSLSessionCache none
who is NOT seeing the problems I saw.
Does anybody have any idea why the the Session Cache would have such a
dramatic impact on IE?
Would mod_perl or Mason impact this?
Configurations that have this problem
Solaris Intel 2.7
Apache 1.3.11
Openssl 0.9.4
Modssl 2.5.1-1.3.11
and
Solaris Intel 2.7
Apache 1.3.12
Openssl 0.9.5a
Modssl 2.6.2-1.3.12
Thanks
robert monical
360-253-2365
[EMAIL PROTECTED]
"Letter writing is the only device for combining solitude and good company."
Lord Byron
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
