If a vulnerability is listed on the 2.4 page (
https://httpd.apache.org/security/vulnerabilities_24.html) - let's pick on
CVE-2014-0226 for mod_status and it is listed as affecting 2.4.9 down to
2.4.1, would 2.2.x also be vulnerable? It is not specifically listed on
the 2.2 vulnerability page (
When using the following setup in the vhost, how to you implement SSL
session reuse. The documentation seems to indicate that it is on by
default, however when running a jmeter test did not see any long lived
connection that looked like they were being reuse. There were lots of
short lived