On Sat, Jan 18, 2014 at 02:00:59PM -0500, Tomas Forsman wrote:
> Everything seems fine now. Thanks for everything so far.
Yay!
For the record, the problem was caused by different virtual hosts
that came originally from different systems having different settings
for SSLCipherSuite, which was causing a need for SSL renegotiation.
This resulted in errors on the server side:
request body exceeds maximum size (131072) for SSL buffer
could not buffer message body to allow SSL renegotiation to proceed
Setting SSLCipherSuite the same for every virtual host on the
same system removed the need for renegotiation.
If you google that error, you see advice on how to work around it by
(in each location) setting the SSLRenegBufferSize option to a larger
value, but we really do not want to allow buffering multi-gigabyte
transactions in memory, so that workaround wasn't a good idea in
this case; instead, we wanted to avoid the renegotiation in the first
place.
_______________________________________________
Foresight-devel mailing list
[email protected]
https://lists.foresightlinux.org/mailman/listinfo/foresight-devel
