Hi, I'm sending this to try to make this not happen : > [Thu Dec 9 14:33:03 1999] [error] mod_ssl: SSL Re-negotiation in conjunction with POST method not supported! Here's a cut part of my httpd.conf : > <VirtualHost _default_:443> > DocumentRoot /www > SSLVerifyClient none > <Directory /www> > Order deny,allow > Allow from all > Options None > </Directory> > <Directory /www/cgi> > Options ExecCGI > SSLVerifyClient require > </Directory> > </VirtualHost> You probably understood that I have a form in a doc (say /www/index.html, for which client authentication SHOULD NOT be required) using a POST method to send the form to a CGI (say /www/cgi/getit.pl, for which client authentication MUST be required). Otherwise, I also got stuck on it when I tried to call a form-script /www/cgi/myform.pl (so that calling the script the client has to authenticate himself) that call the same /www/cgi/getit.pl when the client "Submit" its form. Well, everything works fine when the 'SSLVerifyClient require' is put instead of 'SSLVerifyClient none', but it gives the same problem when it is put in the "<Directory /www>" section, which I don't understand either. Is this due to a bad configuration or what ? (PS : I use the latest released versions of Apache, OpenSSL, and mod_ssl). Thanks in advance, Laurent. ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
