http://bugzilla.novell.com/show_bug.cgi?id=558176
http://bugzilla.novell.com/show_bug.cgi?id=558176#c14
--- Comment #14 from Willy Weisz
As soon as the problem is really solved upstream we will release updates.
It's already solved in openssl-0.9.8m(!) which incorporates TLS renegotiation according to RFC 5746, but this version isn't available as openSuSE RPM. So please release a corresponding update!!! And please release an Apache 2.2.15 RPM compiled against openssl-0.9.8m which allows to accept or reject unsecure "old-style" TLS renegotiations. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.