On 3/26/02 8:16 PM, Robert Allerstorfer wrote:
> I have searched the archive and it seems that there is still no
> solution on how to make a https page viewable with MSIE on MacOS.
Actually, I think there is (finally!) a solution. The following works for
me (thanks to Mark J. Lilback). I thought I posted it here earlier, but if
not, I'm sorry! :)
---
Subject: Re: mod_ssl and Mac IE5
Date: Wednesday, February 6, 2002 2:33 PM
From: Mark J. Lilback <[EMAIL PROTECTED]>
>On 2/6/02 1:25 PM, Mark J. Lilback wrote:
>> Hi... I saw an old message you'd posted to the modssl-users list
>> about IE problems. Did you ever resolve this?
>
>No, and it still drives me nuts to this day... :-/
I just solved it. Do not use an SSLProtocol line. Comment out the
SetEnvIf line that does nokeepalive for MSIE. Use the following
instead.
BrowserMatch "MSIE [1-4]" nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
BrowserMatch "MSIE [5-9]" ssl-unclean-shutdown
I'm also using this cipher suite line, but the default might work, too:
SSLCipherSuite
!EXP1024-RC4-SHA:!EXP1024-DES-CBC-SHA:ALL:!ADH:!EXP56:RC4+RSA:+HIGH:+MEDIUM:
+LOW:+SSLv2:+EXP:+eNULL
This took way too long to figure out, but at least it works now.
Please post this to any list/newsgroup you find appropriate, as I
don't have usenet access (and I saw a ton of questions about this on
the mac ie newsgroup) and ended up having to piece together numerous
pieces of the solution from numerous other posts.
---
-John
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
