Dear users,
We are currently using Apache 2.2.22 (mod_ssl 2.2.22, OpenSSL/0.9.8t) and we
have a security concern since developers are able to bypass the SSL certificate
verification when using HTTPS calls. Kindly advise what configuration is needed
to enforce the certificate verification? In
ne of the best
things to do is probably to consider upgrading your openssl version which seems
ancient.
2018-02-08 7:16 GMT+01:00 Belmona, Nizar
<nbelm...@cscgroup.com<mailto:nbelm...@cscgroup.com>>:
Dear users,
We are currently using Apache 2.2.22 (mod_ssl 2.2.22, OpenSSL/0.9.8t) a