On Thu, 29 Apr 2021 at 21:06, Rob Emery <apache-list@xxxxxxxxxxxxxxx> wrote: ------ 8< Snip 8< --------- > > Yeah we actually already have that enabled in our access logs and we can > see that the clients in question are using TLS1.2 when successful (i.e. > on the next connection). However these connections that result in the > plaintext response actually aren't logged in either the access or error > log at all. This seems to indicate something wrong in front of Apache. Likely some other machine trying to respond in http mode. A misconfigured load balancer perhaps? If you have some fancy multicast/round-robin DNS configuration, maybe a misconfigured endpoint? Seems like the domain is on Route 53, so that might be a possibility. Not as likely since you did report that a system integrator experienced the same problem, but do you have any local DNS overrides that might be interfering with things? Lih --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|