On 03/22/2009 12:17 AM, Nelson B Bolyard:
I don't think we have a generic problem with Apache, Eddy. Apache can be
configured to work well with client auth. It often is not, but that's an
admin problem.
The servers of which I wrote that are configured by default to request
client auth, with server session cache disabled, and dropping all
connections that actually do client auth, are not Apache servers, AFAIK.
Than I misunderstood, since you spoke about "freebies" and Ian used an
Apache server...good to know that Apache and its mod_ssl isn't the
problem here. May I ask to which servers you referred then?
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
Jabber: start...@startcom.org
Blog: https://blog.startcom.org
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
