RE: apache 2.2 (Apache Users)

RE: apache 2.2

Date Prev

Date Next

Thread Prev

Thread Next

Date Index

Thread Index

To: "users@xxxxxxxxxxxxxxxx" <users@xxxxxxxxxxxxxxxx>

Subject: RE: apache 2.2

From: Bram Mertens <bram.mertens@xxxxxxxxxxxxxxxxxxxxxx>

Date: Thu, 18 Nov 2021 09:25:57 +0000

Accept-language: en-GB, en-US

In-reply-to: <DM6PR04MB5883CF49BDCDA0DCBB7DB3C1E59A9@DM6PR04MB5883.namprd04.prod.outlook.com>

Reply-to: users@xxxxxxxxxxxxxxxx

Thread-index: AQHX22w8VEQHbAe7+EeHX1+dIAY/XKwJBJkw

Thread-topic: apache 2.2

Gabriel,

SSLv2 is not just deprecated (as in you shouldn't use it anymore but you still can) it's been prohibited by the IETF.

You have little or no chance of finding anyone willing to support this.

Your best bet is to convince the service provider to use a modern version of TLS or as someone already suggested use a different service.

Just a few resources:

https://www.rfc-editor.org/rfc/rfc6176

https://security.stackexchange.com/questions/135682/what-are-the-risks-of-providing-sslv2-for-additional-device-compatibility/135770

HTH

Bram

From: Gabriel Santos <gabriel_biel1404@xxxxxxxxxxx>
Sent: Wednesday, 17 November 2021 05:37
To: users@xxxxxxxxxxxxxxxx
Subject: apache 2.2

Hi,my name is Gabriel and i want to build a apache server with SSLv2 technology (because the service i want to use only supports SSLv2) and i having errors with many openssl versions(0.9.7-1.0.2)

"SSL/TLS libraries were missing or unusable"

P.S: i already installed libssl-dev

References:

apache 2.2
- From: Gabriel Santos