Re: [Pound Mailing List] BEAST attack patch for Pound 2.6 cannot get certificate

>> > >> "ALL:!aNULL:!ADH:!eNULL:!EXPORT56:RC4+RSA:HIGH:MEDIUM:!LOW:!SSLv2:!EXP: >> !eNUL:!EXP-DES-CBC-SHA:!EXP-RC2-CBC-MD5:!EXP-RC4-MD5:!EXP-DES-CBC- >> SHA:!EXP-RC2-CBC-MD5:!EXP-RC4-MD5" >> > >> > AddHeader "X-Secu

Re: [Pound Mailing List] BEAST attack patch for Pound 2.6 cannot get certificate

ling List] BEAST attack patch for Pound 2.6 cannot get certificate Hi Francoise, Can you show me your current pound.cfg file please (replace anything with X's) ~Scott On 20 September 2012 15:49, Francoise Dehinbo mailto:francoise.dehi...@foxtons.co.uk>> wrote: I tried your suggesti

Re: [Pound Mailing List] BEAST attack patch for Pound 2.6 cannot get certificate

its listening on in its config file to something like 8080 and then with the pound redirect as above inplace but to port 8080 for the BackEnd ~Scott On 20 September 2012 12:51, Francoise Dehinbo mailto:francoise.dehi...@foxtons.co.uk>> wrote: Just for testing, I stopped perlbal, added th

Re: [Pound Mailing List] BEAST attack patch for Pound 2.6 cannot get certificate

55 End End End This should stop the looping and catch anything that is HTTP and display as normal. If you want for FORCE HTTP traffic to HTTPS the Redirect option should work ~Scott On 20 September 2012 12:08, Francoise Dehinbo mailto:francoise.dehi...@foxtons.co.uk>> wrote:

Re: [Pound Mailing List] BEAST attack patch for Pound 2.6 cannot get certificate

.0.1 Port End End End This should stop the looping and catch anything that is HTTP and display as normal. If you want for FORCE HTTP traffic to HTTPS the Redirect option should work ~Scott On 20 September 2012 12:08, Francoise Dehinbo mailto:francoise.dehi...@f

Re: [Pound Mailing List] BEAST attack patch for Pound 2.6 cannot get certificate

t.*" BackEnd Address 172.16.0.40 Port 80 TProxy 1 End End End ListenHTTP Address xxx.xxx.xxx.xxx Port 80 xHTTP 3 ReWriteLocation 1 Service HeadRequire "Host: *support.*"

Re: [Pound Mailing List] BEAST attack patch for Pound 2.6 cannot get certificate

e/2012/2012-01/1327928733000 This will remove the need for the '!SSLv2' option in your Ciphers List line. ~Scott On 19 September 2012 11:51, Francoise Dehinbo mailto:francoise.dehi...@foxtons.co.uk>> wrote: Hi Scott, It worked fine once I switched it to the live certificate i

Re: [Pound Mailing List] BEAST attack patch for Pound 2.6 cannot get certificate

1/1327928733000 This will remove the need for the '!SSLv2' option in your Ciphers List line. ~Scott On 19 September 2012 11:51, Francoise Dehinbo mailto:francoise.dehi...@foxtons.co.uk>> wrote: Hi Scott, It worked fine once I switched it to the live certificate instead of th

Re: [Pound Mailing List] BEAST attack patch for Pound 2.6 cannot get certificate

port/pem-ssl-creation.htm 9 time out of 10 I would use the full PEM file listed right at the bottom of the page. ~Yours, Scott On 19 September 2012 10:11, Francoise Dehinbo mailto:francoise.dehi...@foxtons.co.uk>> wrote: Hi All, My OS is debian squeeze which have Pound version 2.5 installe

[Pound Mailing List] BEAST attack patch for Pound 2.6 cannot get certificate

Hi All, My OS is debian squeeze which have Pound version 2.5 installed. I downloaded the latest stable version 2.6 from http://www.apsis.ch/pound/Pound-2.6.tgz and applied the BEAST attack patch from https://github.com/goochjj/pound/commit/2f69c71b0314538f2a6218f624bdd2b954e5dbc8.patch After ins