Re: [users@httpd] How is this possible? Apache sends HSTS on a non valid cert but user can proceed, on compatible browser

I am not sure whether I agree that that violates the RFC. The connection does fail it just allows the user to override it. In my opinion, I think that this is the only secure way to "fail" an authenticated HSTS header otherwise anybody could in theory activate HSTS on a host. The same paragraph t

RE: [users@httpd] How is this possible? Apache sends HSTS on a non valid cert but user can proceed, on compatible browser

The cert is self signed. Whats is the conclusion, chrome is violating the RFC? It DOES let me proceed. On 10/6/14 5:52 PM, Scott (firstclasswatches.co.uk) wrote: > Hello, > > Not strictly a httpd specific issue but nevertheless, Chrome/Firefox > should ignore the header because it is not delive

Re: [users@httpd] Cannot get certificate chain to work.

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 De, On 10/7/14 11:27 PM, dE wrote: > $ openssl x509 -noout -in server.pem -text Certificate: Data: > Version: 1 (0x0) Serial Number: 13192573755114198537 > (0xb7156feedab91609) Signature Algorithm: sha1WithRSAEncryption > Issuer: C=AU, ST=Some-St

Re: [users@httpd] httpd 2.2 and 2.4; 500 errors with no logs at all

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 All, Bump. Any ideas what might be causing this? Thanks, - -chris On 10/5/14 10:53 AM, Christopher Schultz wrote: > All, > > On 10/5/14 10:23 AM, Christopher Schultz wrote: >> All, > >> On 10/5/14 10:01 AM, Christopher Schultz wrote: >>> All, >

Re: [users@httpd] How is this possible? Apache sends HSTS on a non valid cert but user can proceed, on compatible browser

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 10/6/14 5:52 PM, Scott (firstclasswatches.co.uk) wrote: > Hello, > > Not strictly a httpd specific issue but nevertheless, > Chrome/Firefox should ignore the header because it is not > delivered with a valid certificate and thus there is no wa

Re: [users@httpd] OpenLDAP Prerequesite in Apache 2.4 to use LDAPRetries Directive

On Thu, Oct 9, 2014 at 10:56 AM, Brian Gaber wrote: > This morning I have upgraded to Apache 2.4.10 and have added this > directive to httpd.conf > > > > LDAPRetries 3 > > > > However, my Firefox browser keeps prompting for username and password > regardless of how many time I enter incorrect

[users@httpd] OpenLDAP Prerequesite in Apache 2.4 to use LDAPRetries Directive

This morning I have upgraded to Apache 2.4.10 and have added this directive to httpd.conf LDAPRetries 3 However, my Firefox browser keeps prompting for username and password regardless of how many time I enter incorrect values. I have OpenLDAP 2.4.21 installed. Do I need a newer version o

AW: [users@httpd] Memory allocation request exceeded 65,000 bytes [wd-vc]

A quick google search reveals that this has _nothing_ to do with apache, it is a Lotus Notes Domino message. You need to look for help there. Kurt Bremser AMOS Austria Newton was wrong. There is no gravity. The Earth sucks. Von: aparna Puram [aparnapu...@gmail.co

[users@httpd] Memory allocation request exceeded 65,000 bytes

Hi All, I can see this exception in my logs and users were not able to complete the transaction. I am not sure in which scenarios this error will come. Please let me know why and when this error will be seen and how can i resolve the issue. Are there any parameter changes that are required to by