[Bug 1833039] Re: 18.04/Apache2: rejecting client initiated renegotiation due to openssl 1.1.1
Andreas Hasenack
andreas at canonical.com
Fri Jun 28 13:59:47 UTC 2019
https://bz.apache.org/bugzilla/show_bug.cgi?id=62691#c5
"Moving "SSLVerifyClient require" outside of the <Location> block instantly returns the document. So it does appear to be ONLY the renegotiation case.
"
That works here too, in my simple test case. I had this location directive:
<Location />
SSLVerifyClient require
Require ssl-verify-client
</Location>
By moving SSLVerifyClient to the vhost level, i.e., the whole site
requires it, then re-negotiation isn't triggered and access works
without a timeout.
** Bug watch added: bz.apache.org/bugzilla/ #62691
https://bz.apache.org/bugzilla/show_bug.cgi?id=62691
--
You received this bug notification because you are a member of Ubuntu
Server, which is subscribed to apache2 in Ubuntu.
https://bugs.launchpad.net/bugs/1833039
Title:
18.04/Apache2: rejecting client initiated renegotiation due to openssl
1.1.1
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1833039/+subscriptions
More information about the Ubuntu-server-bugs
mailing list