> You are going to have troubles with international releases of browsers say
> 40/56 bit criptography enabled browsers because they don' t work with
> OpenSa (Apache + ModSSL) on Windows NT but only on Unix boxes.
> Even if they say (Mod_SSL) that international browsers have to step up
from
> low encryption to strong one, it does not work when the Apache server is
> a Windows NT box.
Maybe, but I do NOT require the "128-bit" step-up you talking about.
We have 40/56 bits browsers accessing our sites.
They get their 40/56 bits security.
That's all, and that's their security problem, not ours.
Those that connect with 128 bits browsers, get 128 bits.
And that's fine.
So in our case, we do not need Internet Information Server which we used
until last year. We dropped it in favor of Apache for good and important
reasons. Our needs are not everybody else needs, and reciprocal. I do not
remind the right name given my MS to that "security step-up". But that
"trick" is not even needed anymore with Internet Explorer 5.0.
Nearly ANYBODY can now download a 128 bit enabled MS IE 5.0. The US
Government gave them the right to do so.
---------------------------------------------------------------------
Olivier Mascia T.I.P. Group SA
[EMAIL PROTECTED] www.tipgroup.com
Director, Chief Software Architect +32 65 401111
----- Original Message -----
From: "Francesco D'Inzeo" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, June 20, 2000 3:27 PM
Subject: Re: 1.0.0 woohoo
> On Tue, 20 Jun 2000 14:49:24 +0200, Olivier Mascia wrote:
>
> >
> >> On a different note, what are people using OpenSA for? How many people
> >use
> >> ASP, PHP and Perl with their set-ups? (would it be worth enabling PHP
by
> >> default?)
> >
> >We use ASP on a commerce web site, but are in the process of rewriting
the
> >thing using PHP4, now that it is a module (instead of a cgi). We don't
use
> >perl, well, for now.
> >
> >We use SSL, and that was originally the *primary* reason to choose OpenSA
> >over any other Win32 Apache build available.
> You are going to have troubles with international releases of browsers say
> 40/56 bit criptography enabled browsers because they don' t work with
> OpenSa (Apache + ModSSL) on Windows NT but only on Unix boxes.
> Even if they say (Mod_SSL) that international browsers have to step up
from
> low encryption to strong one, it does not work when the Apache server is
> a Windows NT box.
>
> My company holds a Verisign Global Server ID (payed 895 $) which as stated
by
> Mod_SSL Readme.GlobalID enables Apache+Mod_SSL to step up international
browsers,
> but it works fine on Linux and does not work on Windows NT.
> I had to change the web server software to M$ IIS 4 on Windows NT which
> steps up International browsers correctly.
>
> Regards.
>
>
> -------------------------------------------------------------------
> "On a day not different than the one now dawning, Leonardo drew the
> first strokes of the Mona Lisa, Shakespeare wrote the first words
> of Hamlet, and Beethoven began work on his Ninth Symphony."
> And Windows98 Crashed!
> -------------------------------------------------------------------
> Francesco D'Inzeo
> WinTech S.r.l.
> Via Lisbona 7
> 35127 PADOVA (Italy)
> Tel. (+39)-(0)49-8703033
> Fax. (+39)-(0)49-8703045
> e-mail [EMAIL PROTECTED]
>
>
