[Pkg-openssl-devel] Bug#556211: Bug#556211: Bug#556211: openssl: 0.9.8k-6 silently breaks renegotiation in s_client util

Kurt Roeckx kurt at roeckx.be
Mon Nov 16 17:57:10 UTC 2009


On Mon, Nov 16, 2009 at 04:27:28PM +0300, Vladimir Stavrinov wrote:
> 
> After upgrading to 0.9.8k-6 Client Authentication don't work anymore in
> Apache with SSLCACertificateFile directive. Are there some workaround
> exists?

I'm no expert in apache configuration for this.  I suggest
you contact someone who knows more about this.

But it's my understanding that you can configure your site in such
a way that it doesn't need renegotiation.  I think it requires that
the whole virtual server always requires client authentication.


Kurt






More information about the Pkg-openssl-devel mailing list