Client Side negotiation

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: users@xxxxxxxxxxxxxxxx
Subject: Client Side negotiation
From: Akash Jain <akash.delhite@xxxxxxxxx>
Date: Fri, 11 Jan 2013 21:50:58 +0530
Reply-to: users@xxxxxxxxxxxxxxxx

Hi All,

I have -MultiViews set and SSLInsecureNegotation off ( in ifmodule of mod_ssl.c) in Apache.

But still vulnerability report says I am vulnerable to client side negotiation.

Any pointers ?

The same configuration works on our TEST environments. THe only difference is the build release versions.

The systems where it is vulnerable has 31 around release build and in our TEST environment we have 53 release build version)

All on apache 2.2.3 (Oracle provided)

Thanks !

Prev by Date: Unable to run aplications on an apache server from other adresse than 192.168.6.xxx
Next by Date: Re: Re: Compiling Apache httpd 2.4 with FIPS capable OpenSSL on Solaris
Previous by thread: Unable to run aplications on an apache server from other adresse than 192.168.6.xxx
Next by thread: question with apache rewriterules (working using crome, but not FF)
Index(es):
- Date
- Thread

[Index of Archives] [Open SSH Users] [Linux ACPI] [Linux Kernel] [Linux Laptop] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Squid] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper]