> when connecting to a mod_ssl-enabled server with versions of > internet explorer 5.00.2614.3500IC or below, going through a cisco > local director, we get broken images or page-not-found errors > with some frequency, on something like 1% of the connections. Although our setup is different I think you'll find the solution the same (the local director bit may be a red herring). We have 1.3.14 / 2.7.1 / 0.9.6 on Linux. Different versions of IE from 4.x to 5.0x would produced diffrent results in different setups. Sometimes it was just broken images for a while and at other times IE complained it couldn't locate the server (actually broken handshakes most of the time we think). Netscape 4.x always worked flawlessly when tested in parallel on the same machine etc. After trying everything we could think of the only 100% solution was to dissable SSLv3 globally: SSLProtocol all -SSLv3 We tried looking for answers on the lists etc. and tested all the workarounds and fixes we could find documented. Our conclusion was that this is due to undescribed SSLv3 cipher bugs in IE < 5.5. If someone has found a solution in the meantime we'd also be most gratefull to hear about it. Mark Mark Tiramani FREDO Internet Services [EMAIL PROTECTED] ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
