Hi,
I found a good workaround to this problem. Instead of changing SSLProtocol
to "all -SSLv2", you can make your SSLCipherSuite line read:
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
Which is the default with the addition of !EXPORT56. I tested on all the
various browsers we had around here, and it seems to work for all browsers.
Ralf, maybe we can get this in the FAQ or somewhere else easy to find until
the proper software fix is released? This is quite a showstopper for a
large number of people.
-Dave
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of David Rees
> Sent: Monday, July 03, 2000 11:56 AM
> To: [EMAIL PROTECTED]
> Subject: Confirmed: MSIE 5 56-bit does not work with latest
> Apache/mod_ssl/openssl
>
>
> Hi,
>
> Just to confirm, we are also seeing the same issues with 56-bit MSIE 5 and
> Apache 1.3.12, mod_ssl 2.6.4 and openssl 0.9.5a. As far as I can tell, it
> only affects 56-bit MSIE 5. No SSL pages log at all. There are
> no messages
> in the logs. Does anyone know of a workaround which won't affect other
> browsers?
>
> -Dave
>
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
