RE: Certificate chain order not conform to TLS standard

> -Original Message- > From: Nick Gearls [mailto:nickgea...@gmail.com] > Sent: Donnerstag, 13. August 2009 08:51 > To: dev@httpd.apache.org > Subject: Re: Certificate chain order not conform to TLS standard > > I tried both order: > >SSLCertificateFile conf/ssl/server.pe

Re: Certificate chain order not conform to TLS standard

I tried both order: SSLCertificateFile conf/ssl/server.pem SSLCertificateChainFile conf/ssl/chain.pem where server.pem contains both the cert and the private key, and chain.pem contains either CA/root or root/CA Plüm, Rüdiger, VF-Group wrote: -Original Message-

Re: $ as literal in DirectoryMatch

Eric Covener wrote: > The undocumented behavior of suppressing the significance of '$' in > DirectoryMatch'es argument came up on IRC today. > > ap_directory_walk() uses the AP_REG_NOTEOL macro to ask for this behavior. > > Does anyone recall the rationale before documenting the current > behavio

Re: Balancer-manager, nonce, and xml

On 08/12/2009 08:11 PM, Akins, Brian wrote: > I found something in proxy and was wondering if it was intentional: > > In proxy_balancer, we check the "nonce" param and clear the params if > incorrect or missing, however, then you can't view it in xml unless you > include the nonce, because the x

Balancer-manager, nonce, and xml

I found something in proxy and was wondering if it was intentional: In proxy_balancer, we check the "nonce" param and clear the params if incorrect or missing, however, then you can't view it in xml unless you include the nonce, because the xml param is no longer available. I was trying to get on

$ as literal in DirectoryMatch

The undocumented behavior of suppressing the significance of '$' in DirectoryMatch'es argument came up on IRC today. ap_directory_walk() uses the AP_REG_NOTEOL macro to ask for this behavior. Does anyone recall the rationale before documenting the current behavior? Somewhat unusually, 1.3 doc act

Re: A single IP address and Domain name serving many servers

You can do this with mod proxy. # Proxy Forwarding LoadModule proxy_module modules/mod_proxy.so LoadModule proxy_http_module modules/mod_proxy_http.so ProxyRequests Off Order allow,deny Allow from all #forward /siteX to backend server ProxyPass /site1/ http://

A single IP address and Domain name serving many servers

I want to know if its possible and how to do it... I have one valid ip address and one internet domain. What I want to do is: - when a client access my domain with: www.mydomain.com on his web browser he access my apache server apache1.localnetwork 10.0.0.1 (I already do this through nat in ipta

RE: Certificate chain order not conform to TLS standard

> -Original Message- > From: Nick Gearls [mailto:nickgea...@gmail.com] > Sent: Mittwoch, 12. August 2009 16:32 > To: Development Apache > Subject: Certificate chain order not conform to TLS standard > > Hello, > > I get problems with a picky SSL client complaining that > Apache does

Certificate chain order not conform to TLS standard

Hello, I get problems with a picky SSL client complaining that Apache does not send the certificate chain in the right order (server/CA/root). Is that possible? Doesn't Apache (I am using 2.2.4) honor the RFC? Thanks, Nick