> -----Original Message-----
> From: Glenn Strauss [mailto:[EMAIL PROTECTED]]
> Sent: 14 November 2000 04:43
> To: [EMAIL PROTECTED]
> Subject: Is MSIE 5.5 SSL braindead?
>
>
> All over the list and FAQ I've read about MSIE's braindead
> implementation
> of SSL -- even in MSIE 5.0x -- which necessitates using:
> SSLCipherSuite
> ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
> SetEnvIf User-Agent ".*MSIE.*" \
> nokeepalive ssl-unclean-shutdown \
> downgrade-1.0 force-response-1.0
> Is MSIE 5.5 still braindead in this respect? Or can I increase the
> quality of service for MSIE 5.5 (leaving the regressive
> behavior for all
> prior versions of MSIE)?
>
> Thank you in advance.
>
> PS: Is MS really this bad, or is MSIE "more compatible" with
> IIS because
> of something "special" MS put into both MSIE and IIS?
>
I haven't had chance to try IE5.5 myself, as IE 5.01 SP1 seems fairly
stable. I know that IE5.5 breaks other things (thanks MS!) so I would
suggest you try it for yourself.
Personally, I would hold out little hope that IE5.5 is any better. As for
your final question, yes MS really is this bad. SSL was devised by Netscape,
so it appears that MS are polluting the SSL standard (as they have done with
many others that would be OT here) in order to discredit Netscape and/or
other web servers. I have little doubt that IIS and IE interact in some
unpublished way to work better with each other, and only with each other.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED]
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
