[users@httpd] Apache 2.4.54 x64 securing the SSL private key with Apache httpd on Windows beyond BitLocker

Hi All What is the current best practice for securing the SSL private key with Apache httpd on Windows beyond BitLocker? John Orendt john.p.ore...@medtronic.com [CONFIDENTIALITY AND PRIVACY NOTICE] Information transmitted by this email is proprietary to Medtronic and is intended for use only

[users@httpd] RE: [EXTERNAL] [users@httpd] SSLCARevocationPath CRLs not reloaded after update

Hi After updating the CRL files. If there is a change in the CRL files then restart gracefully the httpd. You need to check and compare periodically. John Orendt john.p.ore...@medtronic.com From: Hendrik Harms Sent: Thursday, March 31, 2022 12:53 PM To: users@httpd.apache.org Subject:

[users@httpd] RE: [EXTERNAL] [users@httpd] Source of JSESSIONID Cookie

Hi My general recollection is cross site scripting must include the specific allowable domains in the configuration for this to work. Allowing cross site scripting from all domains is very bad. John Orendt john.p.ore...@medtronic.com -Original Message- From: John Sent: Tuesday,

[users@httpd] RE: [EXTERNAL] Re: [users@httpd] timeout and keepalive parameter in ProxyPass

Hi I use a different approach to these types of requests. The back end request immediately returns a status message ”Request Received” On Subsequent Requests returns a status message ”Working” Finally, Subsequent Request returns a status message ”Ready” with results. John Orendt

RE: [users@httpd] RE: [EXTERNAL] [users@httpd] Httpd is hanging intermittently

/root# Right now, I dont have failed system in handy and so dont know, what should be the output of above command? On Wed, Sep 22, 2021 at 11:46 PM Orendt, John mailto:john.p.ore...@medtronic.com.invalid>> wrote: Hi This may be related to an openssl problem try openssl rand -hex 8

[users@httpd] RE: [EXTERNAL] [users@httpd] Httpd is hanging intermittently

Hi This may be related to an openssl problem try openssl rand -hex 8 John Orendt john.p.ore...@medtronic.com From: alchemist vk Sent: Wednesday, September 22, 2021 2:09 PM To: users@httpd.apache.org Subject: [EXTERNAL] [users@httpd] Httpd is hanging intermittently Hi All, We are using

[users@httpd] RE: [EXTERNAL] [users@httpd] Feasible to use both password TLS cert access on same directory?

Hi Tom The TLS Client cert verifies that the client device has use of the private key corresponding the client cert. When verified you have mutual authentication between the client device and the server device. User name / password authenticates that hopefully a human knows the credentials.

[users@httpd] RE: [EXTERNAL] Re: [users@httpd] SSL Cipher configuration issue

Hi Paul Just try SSLProtocol TLSv1.3 See how that goes and proceed from there. John Orendt john.p.ore...@medtronic.com -Original Message- From: Paul Claridge Sent: Thursday, August 26, 2021 3:05 PM To: users@httpd.apache.org Subject: [EXTERNAL] Re: [users@httpd] SSL Cipher