[users@httpd] SSL Certificate Validation

2018-02-07 Thread Belmona, Nizar
Dear users, We are currently using Apache 2.2.22 (mod_ssl 2.2.22, OpenSSL/0.9.8t) and we have a security concern since developers are able to bypass the SSL certificate verification when using HTTPS calls. Kindly advise what configuration is needed to enforce the certificate verification? In

Re: [users@httpd] symbol SSLv2_client_method

2018-02-07 Thread Stefan Eissing
No, because I do not have it. Afraid, you need to hunt on the internet yourself. > Am 07.02.2018 um 11:05 schrieb Pietro Pesce : > > hello > > tnx for the response, you can give me the procedure? > > pls > > 2018-02-07 11:03 GMT+01:00 Stefan Eissing

Re: [users@httpd] symbol SSLv2_client_method

2018-02-07 Thread Pietro Pesce
hello tnx for the response, you can give me the procedure? pls 2018-02-07 11:03 GMT+01:00 Stefan Eissing : > Your openssl is not the version that your apache was compiled > against. If you updated it, you need to also re-compile > any executables that link it. > >

Re: [users@httpd] symbol SSLv2_client_method

2018-02-07 Thread Stefan Eissing
Your openssl is not the version that your apache was compiled against. If you updated it, you need to also re-compile any executables that link it. Note that running SSL without staying on current software versions is highly discouraged. For example, Apache does not support versions 2.0 or 2.2

[users@httpd] symbol SSLv2_client_method

2018-02-07 Thread Pietro Pesce
hello i have a solaris zone whit apache: # /app/apache/bin/httpd -version Server version: Apache/2.0.59 Server built: Jun 18 2007 14:27:08 when a try to start receive this error: yntax error on line 32 of /app/apache/conf/httpd.conf: Cannot load /app/apache/modules/mod_ssl.so into server: