Probably this has been discussed to great length and my suggestion herein may not make
sense.
Through a newbie misconfiguration I ended up trying to feed http protocol into the
https code. I noted after I traced the code that it is spcifically written to trap
the http commands. My question is that since this level of effort has been
undertaken... why not just bounce out of the https routines and let apache handle it
as http?
For instance I could understand the code being written to look for an https valid
encrypted message with proper internal verifications with the idea that it will reject
anything else as an error condition. But having said that it seems funny to go to the
extent of identifying what it wacutally is before crapping out.
Note: I hope this is proper content for this list. Perhaps it should be in another
list that I don't know about. I'm placing it here becuase it looks to me that many
people are working on the combined problem of apache and openssl.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
