Hi, I have the following problem. I configured Apache 2.0.40 + openssl
0.9.6g as a reverse proxy to a secure server (e.g. it receives http requests
from clients and sends https requests to the server), and got some
performance problems. I noticed that the https requests don't reuse SSL
sessions,
Hi Ralf and everybody
Wouldn't it now be about time to transfer maintainership of mod_ssl to
somebody else (if there is anybody willing and capable available) , as
this software is now obviously unmaintained except for important security
fixes.
Ralf has done a tremendous job in providing and
Hi all
I agree, I haven't seen much movement/improvements with mod_ssl in the
last months and in this industry things need to get moving in order to
keep the software in touch with its neighbours (apache, open_ssl,
mod_authz_ldap to name a few) and therefore each one improving on the
other.
Part of the reson is that mod_ssl was moved into the Apache 2.0
codebase, development has been quite active there.
So although 1.3 development may be necessary and useful, long term I think
2.0 is the way to go
Cheers
Daniel
Hi all
I agree, I haven't seen much movement/improvements with
On Wed, 25 Sep 2002 08:08:50 -0700
daniel [EMAIL PROTECTED] wrote:
Part of the reson is that mod_ssl was moved into the Apache 2.0
codebase, development has been quite active there.
So although 1.3 development may be necessary and useful, long term I
think 2.0 is the way to go
Of course
Cliff Wooley:
But there's a reason we can't distribute crypto
binaries from apache.org -- if we could, we
would. Guess we wait for Ralf to check up on
the contrib area.
Correct me if I'm wrong, but I thought that ITAR restrictions eased up about
a year ago, so OpenSSL strong crypto can
I was once rumoured to have written:
SSLRequire ( %{SSL_CIPHER_USEKEYSIZE} = 128 and %{SSL_CLIENT_VERIFY} eq
SUCCESS )
# Allow any of certs, network access or basic auth
Satisfy any
# Network Access Control
Order deny,allow
I need to know if anyone else is doing this successfully... loading apache
aware ssl with multiple vhosts --- all with their own PEM passphrase on
their key files --- and each has thier own PassPhraseDialog exec: line where
it gets the password from... if you do this sucessfully, can you please
You are correct in that statement.
How ever I'm still trying to clerify a few little potential snaggs.
From what I've seen a permit may be required, for export / downloads to
non-US locations. Hosting servers may need to have the ability to deny
downloads to locations that shouldn't have it.
On Wed, 25 Sep 2002, Ken C wrote:
From what I've seen a permit may be required, for export / downloads to
non-US locations. Hosting servers may need to have the ability to deny
downloads to locations that shouldn't have it. (don't ask me, I'm just
reading this stuff)
While it has relaxed,
Everyone have their reading glasses on?
In an effort to get to the meat of the issue without all the mind numbing
legal double talk I made a couple of phone calls.
(I figured what the hell, they take what they want from my income, I'll make
them regret answering the phone)
I appears that since
Ken Campney wrote:
Everyone have their reading glasses on?
In an effort to get to the meat of the issue without all the mind numbing
legal double talk I made a couple of phone calls.
(I figured what the hell, they take what they want from my income, I'll make
them regret answering the
Hello,
Im sure im not the only one that has ever asked this but couldnt really find
anything on google.
What happens if you what to have your passphrase entered automatic when
starting https, especially if your not sitting at your system at 3am...
Thanks upfront...
Rob
No problem.
Actually the only information I was looking for was who
Apache_1.3.26-Mod_SSL_2.8.10-OpenSSL_0.9.6g-Win32.zip
actually belonged to (is it Apache, OpenSSL, or Mod_ssl)
There are a few US mirrors setup on the modssl.org so it's just a matter of
making sure everything is setup
ERRR.
Do I have the right file name?? lol
What ever the file name/names in need of a depot is, I'm assuming it was
Apache_1.3.26-Mod_SSL_2.8.10-OpenSSL_0.9.6g-Win32.zip
Ken
- Original Message -
From: Ken Campney [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, September 25,
Ken Campney wrote:
ERRR.
Do I have the right file name?? lol
What ever the file name/names in need of a depot is, I'm assuming it was
Apache_1.3.26-Mod_SSL_2.8.10-OpenSSL_0.9.6g-Win32.zip
Ken
- Original Message -
From: Ken Campney [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Ken,
The source for:
- Apache_1.3.26-Mod_SSL_2.8.10-OpenSSL_0.9.6g-Win32.zip
- Openssl-0.9.6g-Win32.zip
2002.09.21 12.08 3,066,788 apache_1.3.26-win32-src.zip
2002.09.18 04.32 753,241 mod_ssl-2.8.10-1.3.26.tar.gz.tar
2002.09.21 12.09 2,170,570 openssl-0.9.6g.tar.gz.tar
The source for:
17 matches
Mail list logo