Package: apache-ssl Version: 1.3.27.1-3 Hi, after upgrading to the latest version vo apache-ssl (1.3) an authorization script denied user access. I found that apache-ssl is now accepting AES, but passing a keysize of 0 bit. Since the script requires a minimum keylength, it denied access. So the bug to report is then wrong KEYSIZE environment variable: HTTPS_CIPHER AES256-SHA HTTPS_KEYSIZE 0 HTTPS_SECRETKEYSIZE 0 regards Hadmut