Bug#733564: pu: apache2 with ECDHE support

To: Stefan Fritsch <sf@sfritsch.de>
Cc: debian-apache@lists.debian.org, 733564@bugs.debian.org
Subject: Bug#733564: pu: apache2 with ECDHE support
From: Kurt Roeckx <kurt@roeckx.be>
Date: Mon, 14 Apr 2014 22:07:30 +0200
Message-id: <[🔎] 20140414200730.GA29417@roeckx.be>
Reply-to: Kurt Roeckx <kurt@roeckx.be>, 733564@bugs.debian.org
In-reply-to: <[🔎] 2709305.3U5MXJiIa2@k>
References: <20131229225854.GA20830@roeckx.be> <[🔎] 1645986.Dq73KekQRF@k> <[🔎] 20140414191846.GA10183@simplex.0x539.de> <[🔎] 2709305.3U5MXJiIa2@k>

On Mon, Apr 14, 2014 at 09:57:21PM +0200, Stefan Fritsch wrote:
> Am Montag, 14. April 2014, 21:18:46 schrieb Philipp Kern:
> > So I'd say that we should go and add ECDHE support to Apache as
> > suggested and also patch OpenSSL for the OS X bug as the
> > fingerprinting landed upstream and we would merely replicate
> > current upstream behavior.
> 
> OK, sounds good.
> 
> Kurt, if the openssl patch is like [1], it would require that apache2 
> is built against the updated version of openssl, due to the changed 
> value of SSL_OP_ALL. Can you please ping me when you have uploaded the 
> new package? Also, you should probably mention in the changelog that 
> only recompiled applications get to use the workaround.

I'll let you know when I've done an upload.


Kurt

Reply to:

Follow-Ups:
- Bug#733564: pu: apache2 with ECDHE support
  - From: Kurt Roeckx <kurt@roeckx.be>

References:
- Bug#733564: pu: apache2 with ECDHE support
  - From: Stefan Fritsch <sf@sfritsch.de>
- Bug#733564: pu: apache2 with ECDHE support
  - From: Philipp Kern <pkern@debian.org>
- Bug#733564: pu: apache2 with ECDHE support
  - From: Stefan Fritsch <sf@sfritsch.de>

Prev by Date: Processed: closing 734244
Next by Date: Uploading linux (3.13.10-1)
Previous by thread: Bug#733564: pu: apache2 with ECDHE support
Next by thread: Bug#733564: pu: apache2 with ECDHE support
Index(es):
- Date
- Thread