On Thu, Jun 05, 2008 at 10:47:25AM -0600, Keith Hellman wrote: > This sounds a lot like > https://issues.apache.org/bugzilla/show_bug.cgi?id=42625 > https://issues.apache.org/bugzilla/show_bug.cgi?id=12355 > > But I think it is different. I'm using certificates for authentication > to all of my pages: > > <Location "/"> > # applied to _all_ URLs > SSLRequireSSL > > SSLVerifyClient require
You should put all this inside the VirtualHost config for the SSL vhost(s) in question. That way you avoid having to do a per-location renegotiation and the request body buffering which is necessary in that case. joe ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager [EMAIL PROTECTED]