Bug#211872: Wrong HTTPS_KEYSIZE with AES

To: submit@bugs.debian.org
Subject: Bug#211872: Wrong HTTPS_KEYSIZE with AES
From: debbug2@danisch.de
Date: Sat, 20 Sep 2003 23:40:56 +0200
Message-id: <[🔎] 20030920214056.GA6214@danisch.de>
Reply-to: debbug2@danisch.de, 211872@bugs.debian.org

Package: apache-ssl
Version: 1.3.27.1-3

Hi,

after upgrading to the latest version vo apache-ssl (1.3)
an authorization script denied user access. I found that
apache-ssl is now accepting AES, but passing a keysize
of 0 bit. Since the script requires a minimum keylength, 
it denied access.

So the bug to report is then wrong KEYSIZE environment variable:

HTTPS_CIPHER AES256-SHA
HTTPS_KEYSIZE 0
HTTPS_SECRETKEYSIZE 0

regards
Hadmut

Reply to:

Prev by Date: Bug#109687: marked as done (Please add option to run in normal standalone mode, but in the foreground; support logging to programs)
Next by Date: apache2 'connection closed' problem
Previous by thread: Bug#109687: marked as done (Please add option to run in normal standalone mode, but in the foreground; support logging to programs)
Next by thread: apache2 'connection closed' problem
Index(es):
- Date
- Thread