Re: [users@httpd] mpm-itk questions

2016-02-25 Thread Jonny Rimkus
I'm using mpm-itk for about 2 years with about 10 virtualhosts without issues. (with php enabled) I had very rarely segmentation faults, but I can't say if the reason is/was mpm-itk. So my experience is good. Am 25.02.2016 19:09:12, schrieb Rose, John B: > Curious about any experience using mpm

[users@httpd] mpm-itk questions

2016-02-25 Thread Rose, John B
Curious about any experience using mpm-itk. Pros and cons? Would you recommend it? Thanks Sent from my iPad - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.

Re: [users@httpd] Is it possible to use two different client cert sets?

2016-02-25 Thread Tom Browder
On Thu, Feb 25, 2016 at 10:24 AM, Eric Covener wrote: > On Thu, Feb 25, 2016 at 11:20 AM, Tom Browder wrote: >> But, for future reference, how would using two CA's for the same >> protected directory work? Would the two SSLCACertificateFile files >> have to be concatenated into one? > > The file

Re: [users@httpd] Is it possible to use two different client cert sets?

2016-02-25 Thread Eric Covener
On Thu, Feb 25, 2016 at 11:20 AM, Tom Browder wrote: > But, for future reference, how would using two CA's for the same > protected directory work? Would the two SSLCACertificateFile files > have to be concatenated into one? The file you point to can be an aggregation of CA certificates. --

Re: [users@httpd] Is it possible to use two different client cert sets?

2016-02-25 Thread Tom Browder
On Thu, Feb 25, 2016 at 9:24 AM, Eric Covener wrote: > On Thu, Feb 25, 2016 at 6:58 AM, Tom Browder wrote: >> I have started generating the certs with SHA2, but want to know if can I use >> both systems on the same site while I get my users to transition to their >> new certs. > > Unless I am mis

Re: [users@httpd] Is it possible to use two different client cert sets?

2016-02-25 Thread Daniel
No, afaik the only transition is when you get the new cert signed you copy them to its respective path and gracefully restart apache. El jue., 25 feb. 2016 a las 12:58, Tom Browder () escribió: > I have a working system of client certs (which were signed using > SHA1) allowing access to a private

Re: [users@httpd] Is it possible to use two different client cert sets?

2016-02-25 Thread Eric Covener
On Thu, Feb 25, 2016 at 6:58 AM, Tom Browder wrote: > I have started generating the certs with SHA2, but want to know if can I use > both systems on the same site while I get my users to transition to their > new certs. Unless I am misunderstanding: If you use the same CA, the old certs will rem

[users@httpd] Is it possible to use two different client cert sets?

2016-02-25 Thread Tom Browder
I have a working system of client certs (which were signed using SHA1) allowing access to a private area on a website. As we all know, soon such certs will be a thing of the past since SHA2 will be required. I have started generating the certs with SHA2, but want to know if can I use both systems