On Wed, 27 Mar 2002, John Siracusa wrote: > BrowserMatch "MSIE [1-4]" nokeepalive ssl-unclean-shutdown \ > downgrade-1.0 force-response-1.0 > BrowserMatch "MSIE [5-9]" ssl-unclean-shutdown > > SSLCipherSuite > !EXP1024-RC4-SHA:!EXP1024-DES-CBC-SHA:ALL:!ADH:!EXP56:RC4+RSA:+HIGH:+MEDIUM: > +LOW:+SSLv2:+EXP:+eNULL
That !EXP56 should be !EXPORT56 . And by the way, the mod_ssl FAQ recommends this: SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP which is pretty similar to what you have but slightly less restrictive. --Cliff -------------------------------------------------------------- Cliff Woolley [EMAIL PROTECTED] Apache HTTP Server Project ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
