Hello,
Is it possible to configure the server to not provide a server
certificate? We want to set up an encrypted conversation without requiring
server authentication.
SSL supports it, it's called Anonymous Diffie Hellman and you should be able
to setup OpenSSL+mod_ssl so that it does ADH,
Hi,
How does one point a browser to a CA's CRL so that it can check is a
server's certificate has been revoked? Looking through documentation for
Apache and mod_ssl all mention of CRLs seems to be incontext of *client
certificate authentication* and no mention is made of "server
u can read more about it here:
http://www.modssl.org/docs/2.6/ssl_faq.html#ToC48
Yes i have those lines.
Regards,
Simon Weijgers
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Ma
.
Regards,
Simon Weijgers
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager[EMAIL PROTECTED]
Type: text/html; charset=iso-8859-1
as you can see it still says 'HTTP/1.1 302 Found' instead of 'HTTP/1.0 302
Found' what you'd expect.
Regards,
Simon Weijgers
__
Apache Interface to OpenSSL (mod_ssl) www.modss
to a first order.
Actually with mod_ssl ephemeral is really not so ephemeral.
It's generated only once at startup. So ephemeral is as long
as the uptime of apache which usually is quite long.
Regards,
Simon Weijgers
__
Apache
connection might be effective against (passive)
``sniffing'', they're not at all secure against
``man-in-the-middle''-attacks.
Regards,
Simon Weijgers
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User
On Wed, 8 Dec 1999, Cliff Woolley wrote:
Simon Weijgers [EMAIL PROTECTED] 12/08/99 10:18AM
You can infact, but you'll have to recompile OpenSSL with Anonymous
DH
(diffie-helman) enabled.
Ahh, true enough. I stand corrected. I was only talking about
RSA-style encryption, not even
www.rhqc.com
and will thus issue a warning because of obvious security considerations.
Regards,
Simon Weijgers
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List
Hi,
I can't seem to find a configure option to enable ipc semaphore support
in modssl. Does this mean it isn't stable yet?
Regards,
Simon Weijgers
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User
On Wed, 28 Jul 1999, Ralf S. Engelschall wrote:
On Wed, Jul 28, 1999, Simon Weijgers wrote:
I can't seem to find a configure option to enable ipc semaphore support
in modssl. Does this mean it isn't stable yet?
From the user manual under "SSLMutex":
(http://www.modssl.or
11 matches
Mail list logo