Hello all
After reading the faq and searching the archive I'm still unable to get 40
bit versions of ie to connect through SSL. I'm hoping some one from the list
might be able to offer some suggestions.
The Server
Apache/1.3.14 (Unix) (Red-Hat/Linux) mod_ssl/2.7.1 OpenSSL/0.9.5a
PHP/4.0.4pl1 mod_perl/1.21 verisign 128bit cert
The Client
ie 5.00.2614 (40 bit) and 40bit ie on the Mac.
The symptoms
Will connect on the first https page request sometimes, but only show the
text, no graphics specified by absolute or relative file path. Following
links will always result in the "you are now leaving a secure area" message
even if they are to other ssl pages. The subsequent page will not display.
Everything works fine on netscape and 128 bit ie browsers.
What I've tried so far (none has any effect what so ever)
(from the Faq)
Tried
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
by itself no joy
then added
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
still no joy
I read on a mail list that the sytax might be
SSLCipherSuite ALL:!ADH:!EXP56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
so I gave that a whirl still no joy so I droped in:
SSLProtocol all -SSLv3
first with the other two lines commented out, then I added back the first
one, and then the second one to no effect.
So I went back to the archive and found some mention of ssl session cache so
I tried dropping in..
SSLsessioncache none
Still no effect on the problems
In the ssl_request log I'm seeing the problem cypher as
TLSv1 EXP-RC4-MD5
The brower does have TLs enabled.
This is particularly problematic because this is the config on a default win
98 install.
Does anyone know of a fix
Thanks in Advance
Tim Taylor
Steel Digital Studios
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
