How does Apache handle expired server certificate and expired CA root certificate?

[Swapan Gupta <swapan_gupta@xxxxxxxxxxx>]

Hi,

 

Appreciate if someone could share more info on the following:

 

Does Apache do any special handling if the installed server certificate or the CA root certificate has expired?

 

In my installation, we are seeing that the expired Server certificate is sent to the client when a resource is accessed over https.

Is this the expected behavior?

 

If not, do we need to do any specific configuration on Apache, which will prevent Apache from sending the server certificate?

 

Please suggest what is the expected behavior in such cases when the server certificate or the CA root certificate has expired and client accesses a resource over https.

 

Thanks
Swapan

**************** CAUTION - Disclaimer *****************
This e-mail contains PRIVILEGED AND CONFIDENTIAL INFORMATION intended solely 
for the use of the addressee(s). If you are not the intended recipient, please 
notify the sender by e-mail and delete the original message. Further, you are not 
to copy, disclose, or distribute this e-mail or its contents to any other person and 
any such actions are unlawful. This e-mail may contain viruses. Infosys has taken 
every reasonable precaution to minimize this risk, but is not liable for any damage 
you may sustain as a result of any virus in this e-mail. You should carry out your 
own virus checks before opening the e-mail or attachment. Infosys reserves the 
right to monitor and review the content of all messages sent to or from this e-mail 
address. Messages sent to or from this e-mail address may be stored on the 
Infosys e-mail system.
***INFOSYS******** End of Disclaimer ********INFOSYS***