Hi all, Encryption isn't a strong point for me unfortunately...
We have a website at http://www.mobiles.co.uk, which as part of the ordering process connects to our Apache 1.3.22/mod_ssl RedHat machine, and speaks SSL (the point at which it changes to https://secure.mobiles.co.uk ). We have had a few complaints from customers that they have been unable to connect to the secure parts of our sites. Having ruled out connectivity issues, and done some VMWare testing at home, I concluded that the affected versions were (I think) all versions of IE with cypher strengths of 56-bits. As soon as I patched the virtual machines with the high-encryption pack, they sprung into life. So my question really is this: Do I need to look for a problem in the httpd.conf of our server, do I look for a problem with the certificate/intermediate certificate, or do I just give up, and just live with the fact that half our customers can't connect to our site? I had originally assumed this was to do with a bug in early implementations of IE5, but since then we have had reports of the same behaviour in IE6 (which initially comes in 56-bit flavour under win2k unless patched). I have had no help from verisign, other than the usual confused gibberings I have come to expect from them, so I hoped someone out there might have a clue I can carry on with? Thanks, L -- Louis Sabet <[EMAIL PROTECTED]> http://www.webtedium.com/ ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
