Hi,
That is not a bug, it is a feature! With the TLS renegotiation there
is a theoretical man-in-the-middle-attack possible. To prevent that
the developers decided to deactivate the TLS renegotiation.
Solution: use SSLInsecureRenegotiation on
Hello,
In a host where client certificate is optional and in some directories
requirement. Server is SNI, and this configuration works fine before
SNI.
VirtualHost *:443
SSLVerifyClient optional
Location /certrequirement
SSLVerifyClient require
/Location
...
I use SNI client (firefox) with