Howdy,
The mod_ssl faq says to do the following:
The first reason is that the SSL implementation in some MSIE versions
has some subtle bugs related to the HTTP keep-alive facility and the SSL
close notify alerts on socket connection close. Additionally the
interaction between SSL and HTTP/1.1 features are problematic with some
MSIE versions, too. You've to work-around these problems by forcing
Apache+mod_ssl+OpenSSL to not use HTTP/1.1, keep-alive connections or
sending the SSL close notify messages to MSIE clients. This can be done
by using the following directive in your SSL-aware virtual host section:
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
from http://www.modssl.org/docs/2.8/ssl_faq.html#io-ie
Do I need to set something similar in Tomcat? Is it already part of the
coyote connector?
Thanks,
-gabe
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
