Fix too widely open regexp targeting SSL/TLS settings of Microsoft
Internet Explorer. See rant: http://newestindustry.org/2007/06/06/dear-apache-software-foundation-fix-the-msie-ssl-keepalive-settings/ This is also ack'ed by Apache and fixed in their httpd's trunk: https://issues.apache.org/bugzilla/show_bug.cgi?id=49484 http://svn.apache.org/viewvc/httpd/httpd/trunk/docs/conf/extra/httpd-ssl.conf.in?view=markup
This commit is contained in:
Ossi Herrala
parent
b87e13140e
commit
cd91e65ab2
1 changed files with 4 additions and 3 deletions
|
|
@ -138,9 +138,10 @@ SSLCertificateChainFile <%= @apache_ssldir %>/certs/<%= site_fqdn %>.chain.crt
|
||||||
# Similarly, one has to force some clients to use HTTP/1.0 to workaround
|
# Similarly, one has to force some clients to use HTTP/1.0 to workaround
|
||||||
# their broken HTTP/1.1 implementation. Use variables "downgrade-1.0" and
|
# their broken HTTP/1.1 implementation. Use variables "downgrade-1.0" and
|
||||||
# "force-response-1.0" for this.
|
# "force-response-1.0" for this.
|
||||||
SetEnvIf User-Agent ".*MSIE.*" \
|
BrowserMatch "MSIE [2-5]" \
|
||||||
nokeepalive ssl-unclean-shutdown \
|
nokeepalive ssl-unclean-shutdown \
|
||||||
downgrade-1.0 force-response-1.0
|
downgrade-1.0 force-response-1.0
|
||||||
|
|
||||||
|
|
||||||
# Per-Server Logging:
|
# Per-Server Logging:
|
||||||
# The home of a custom SSL log file. Use this when you want a
|
# The home of a custom SSL log file. Use this when you want a
|
||||||
|
|
|
||||||
Loading…
Add table
Reference in a new issue