Anders Rundgren: > on the URL http://demo.webpki.org/mozkeygen > you can get yourself a certificate by clicking a single button. > > What is a bit hard to understand is why the test-service at > https://www.apache-ssl.org/cgi/cert-export > often (but not always!) asks the user multiple times to OK the > certificate selection dialog. In IE I get a consistent one invocation > with similar certificates. > > I note a difference in TLS parameters for IE and FF. > > Is this maybe related to some negotiation issues? Is the server > wrongly configured or is FireFox handling this incorrectly? I > haven't touched any settings in FireFox.
In IIS the state of certificate authentication is somehow saved in a session. However with Apache you must do that by yourself, which means, first successfully authenticate and save this state somehow (session, cookie, whatever) and not prompt for it anymore. Additionally I think IE sends every time the certificate when asked by the server, after a decision has been made which certificate to use. In order to use a different certificate for example, one needs to close IE and login again. -- Regards Signer: Eddy Nigg, StartCom Ltd. <http://www.startcom.org> Jabber: [EMAIL PROTECTED] <xmpp:[EMAIL PROTECTED]> Blog: Join the Revolution! <http://blog.startcom.org> Phone: +1.213.341.0390 _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
