I don't know about the rest of you guys, but I'm getting sick of all these
incompatibility reports with mod_ssl/openssl and different browsers.
What I'm going to do is to start documenting which browsers work and which
browsers don't work with various settings.
I'd like to start with a stock setup, and go from there.
If everyone could go and hit http://spoke.nols.com:8080/ and then
https://spoke.nols.com:8443/ and then report their success/failure, I'll
start getting these down so we can find out what the problem browsers are.
After these are figured out, we'll see if we can find some work arounds.
You can view the /server-status is available so you can see the server
stats and setup, it's running Apache/1.3.14 mod_ssl/2.7.1 OpenSSL/0.9.6 on
a RedHat 6.2 box with all the latest updates. The mm module was compiled
statically, OpenSSL was compiled with -O2 instead of -O3 and also with the
-fPIC and no-idea configuration options.
The httpd.conf contains the standard
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
and
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
Send me your results!
As I get some time after Christmas I'll write up a little application so
you can log/view results directly via the web.
Of particular interest are the following browsers:
Any browser running on a Mac.
IE other than version 5.5.
IE running something other than 128-bit encryption.
AOL Users.
-Dave
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
