You need to make sure that Apache only accepts connections from presenters of client certificates (which your CA has copies of.) I think this is documented in mod ssl.
TIA
Chuck Lyon
UTS Enterprise Systems
University Park PC 417A
Florida International University
Miami, FL 33199
Sonu
Has anyone looked into the SSH Secure Shell Server problem. Take a
look at http://www.caic.org/ciac/bulletins/m-081.shtml
Chuck
[EMAIL PROTECTED] via RT wrote:
Hi there,
it seems that in line 84 in crypto/cversion.c there is a bug:
eg. if you run Configure with -DDEVRANDOM=\/dev/random