Seb Bacon wrote:
>
> there are ways round this problem. i know this because, for example,
> https://ssl128.co.uk uses the exact same cert type as me (verisign 128-bit
> 'global id') with more or less the same server (stronghold which AFAIK is
> apache + mod_ssl) and it works with them. i hope i don't have to use
> apache_ssl instead as florin suggests. florin - does this solve all the
> problems with IE?
Err... You mean if i can access https://ssl128.co.uk/ with my IE?
Yes, i can. I just tried, it works well.
> i'm a bit confused about who else is having the same problems - could anyone
> with my symptoms or similar please say aye, and then we could continue all
> this in the same thread :
> - apache 1.3.12 + mod_ssl + mod_ssl-2.6.4, openssl-0.9.5a
I just tried 2.6.5 too. Same problem, no matter what settings (the original
ones, or combinations of the proposed workarounds on the mailing list).
> forcing SSLv2 seems to break other browers !@":##!
I tried to force SSLv2 on the client side (by disabling SSLv3 in IE), but no
luck. I get this:
[04/Jul/2000 16:34:19 06673] [info] Connection to child 3 established
(server atlanta.rds.ro:443, client 193.226.136.126)
[04/Jul/2000 16:34:19 06673] [info] Seeding PRNG with 512 bytes of entropy
[04/Jul/2000 16:34:19 06673] [info] Connection: Client IP: 193.226.136.126,
Protocol: SSLv2, Cipher: EXP-RC4-MD5 (40/128 bits)
[04/Jul/2000 16:34:19 06673] [info] Connection to child 3 closed with
standard shutdown (server atlanta.rds.ro:443, client 193.226.136.126)
but no page loaded in the browser. (as you can see, it does establish a v2
connection)
--
Florin Andrei
mailto:[EMAIL PROTECTED] http://members.linuxstart.com/~florin/
tel: +40-93-261162
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
