This bug is for Apache 2.2 not for Apache 2.4 so don't mark as fix released when thats not the case...
This has been fixed already in Debian 7.6 and there is a debdiff for it so there should not be a considerable amount of work to apply it right now. Ubuntu 12.04 will be supported until 2017 thats 3 more years, this qualify as SRU as the regression potential is near to zero, since it just adds support for more ciphers to Apache, if for some reason anyone don't want to use the EC cipher suites just add !ECDH to the list of cipher suites. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1197884 Title: apache2.2 SSL has no forward-secrecy: need ECDHE keys To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1197884/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
