DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUGĀ· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=29744>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED ANDĀ· INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=29744 ------- Additional Comments From [EMAIL PROTECTED] 2007-09-14 01:56 ------- With the behaviour of encrypted CONNECT not specified by an RFC and obviously two different uses of CONNECT are proven to be in demand (and the original writer leaving comments in the code stating that the current state of affairs isn't necessarily the right way of doing things) I don't see why this feature isn't included in the official distribution. All that is needed is a new directive to control the behaviour, for instance CONNNECTEncryption plain | encrypted | sameAsOrigin. The default may very well be todays behaviour to ensure compatibility. Today, I have to use at least a day to add this patch to my servers each time there is a new Debian release of Apache2. I loose the ease of use of a distribution, and my servers are potentially less secure because this perpetual patch doesn't get the amount of competent eyeballing and feedback it deserve. -- Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
