Have you seen this FAQ?
http://www.modssl.org/docs/2.7/ssl_faq.html#ToC48
To sum it up, make sure these lines exist in your SSL virtual host:
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
Some people have found that adding !EXP1024-RC4-SHA and !EXP1024-DES-CBC-SHA
to the SSLCipherSuite line (after ALL) also helps the situation, but I have
not been able to verify it myself.
-Dave
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Abe Denmark
> Sent: Monday, November 20, 2000 1:50 PM
> To: [EMAIL PROTECTED]
> Subject: Encryption Levels
>
>
> I'm an administrator for a webstore, and I've encountered a problem:
>
> A machine with WIN2K and 56-bit encryption in IE could not see the store.
> Another machine with Win NT4 and 56-bit encryption in IE couldn't see it
> either.
>
> My store has a certificate for 128-bit, so I figured that upgrading the
> browsers to 128-bit encryption. This fixed the problem.
>
> However, I have come across a machine with Win2K, 56-bit encryption on IE
> that CAN see the store. Also, a machine with Win95 and IE4 with 40-bit
> encryption could see the store as well.
>
> Apparently, the encrytion level of the browser does NOT effect
> the problem,
> yet upgrading the broser to 128-bit encryption DOES fix the problem every
> time.
>
> I'm stuck. Any suggestions would be greatly appreciated.
>
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
