Full_Name: G�ran �berg Version: 2.8.0 OS: Submission from: (NULL) (130.240.112.42) The patch pkg.sslcfg/sslcfg.patch adds the example line SSLCipherSuite ALL:!ADH:!EXP56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL but this won't help against broken MSIE-clients because EXP56 should read EXPORT56. All other occurances of /EXP(ORT)?56/, e.g. reference documentation and FAQ, seem to use the correct cipher name EXPORT56. I've spent the last few days trying to track down why some MSIE was unable to get SSL-connections until it hit me to check the names of the ciphers in openssl/ssl/ssl.h and found a different string than the one I was trying to exclude with SSLCipherSuite. (-: Other than the little flaw in the supplied configs I think it's just great the way mod_ssl lets me compensate for broken client software at such a detailed end exact way. Thanx! /G ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
