https://issues.apache.org/bugzilla/show_bug.cgi?id=52495
Bug #: 52495
Summary: CACertificate, CADNCertificate, CARevocation,
CertificateChain, Certifcate and CertificateKey per
directory context
Product: Apache httpd-2
Version: 2.5-HEAD
Platform: All
OS/Version: All
Status: NEW
Severity: enhancement
Priority: P2
Component: mod_ssl
AssignedTo: [email protected]
ReportedBy: [email protected]
Classification: Unclassified
Hi.
It's already possible to set the Client Auth Requirements per directory
context, which triggers a renegotiations. The same is true for the CipherSuite.
I'm not an SSL/TLS expert, but some of the following suggestions might be
possible to (eventually) implement:
SSLCACertificateFile
SSLCACertificatePath
SSLCADNRequestFile
SSLCADNRequestPath
SSLCARevocationFile
SSLCARevocationPath
SSLCertificateChainFile
SSLCertificateFile
SSLCertificateKeyFile
should be settable per directory-context.
I don't know whether SSL/TLS allows changing the server certificates,
certificate chains and the proposed DNs in renegotiations...
But at least CACertificate should be changeable on a per directory basis, as
this is only a server side verification.
Cheers,
Chris.
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
