[prev in list] [next in list] [prev in thread] [next in thread] 

List:       apache-ssl
Subject:    Re: AW: AW: [apache-ssl] Apache 1.3.12 + ssl_1.39, Verisign 128
From:       "Rob Winningham" <Rob_Winningham () rayberndtson ! com>
Date:       2000-12-15 20:55:06
[Download RAW message or body]



> >You seem to be missing the following directives:
>
> >SSLRandomFile
> >SSLRandomFilePerConnection
>
> Sorry, but this was not the reason. I did reconfigure the server - but no
> changes. I can't believe that it is my server config. Must be something like
> different algorithms versions etc...
> There are no specific errors in the logs. The statements debug mode are
> perfect too:
>
> [Fri Dec 15 18:44:49 2000] [debug] apache_ssl.c(357): Random input
> /dev/urandom(1024) -> 1024
> [Fri Dec 15 18:44:49 2000] [debug] apache_ssl.c(1796): CIPHER is
> EXP1024-RC4-SHA

Ok, I'm stumpted.  Without error messages, I can only guess that it is by
design.  Ben or Adam: do either of you have advice on this?

As far as I know a 40-bit or 56-bit browser should be able to communicate
with a 128-bit certificate on the server.  I could be wrong about this...

What does Verisign have to say?

In any case, please post any of your findings for those fortunate enough
to encounter similar situations in the future.

==Rob==




-----------------------------------------------------------------------------------
to unsubscribe, send a blank email to: apache-ssl-unsubscribe@lists.aldigital.co.uk

[prev in list] [next in list] [prev in thread] [next in thread]