[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[users@httpd] Re: Apache supports client initiated renegotiation

Hi All,

Any help on this issue.
 My openssl is sending Secure client initiated renegotiation but my apache server is rejecting because it is client initiated. I checked custom log and it shows my apache supports secure renegotiation.  
Can somebody has tried secure  renegotiation in apache. How to enable client initiated secure renegotiation ?


On Thu, Apr 19, 2018 at 3:03 PM, Hemant Chaudhary <hemantdude.chaudhary@xxxxxxxxx> wrote:
Hi Team,

I tried to send request from openssl-1.0.2d to Apache server-2.4.25 for ssl renegotiation using command "openssl s_client -connect IP:PORT". I got error RENEGOTIATING
2283136:error:1409E0E5:SSL routines:ssl3_write_bytes:ssl handshake failure:s3_pkt.c:656. I checked in error log, error is [client] AH02042: rejecting client initiated renegotiation. 

I got SSL_SECURE_RENEG true in my custom log, it means we are supporting Secure Renegotiation. But how should I enable client initiated ssl renegotiation ?