[Bug 1197884] Re: apache2.2 SSL has no forward-secrecy: need ECDHE keys
Jonathan
1197884 at bugs.launchpad.net
Sat Jan 10 15:10:39 UTC 2015
hi,
i included the patch from debian to ubuntu. Added an debdiff.
about the openssl/mac os x problem:
if i follow the ciphers from
https://community.qualys.com/blogs/securitylabs/2013/08/05/configuring-
apache-nginx-and-openssl-for-forward-secrecy
ciphers with ECDHE-ECDSA-* are not enabled, so this should not be a problem.
for details see http://wiki.openssl.org/index.php/SSL_OP_SAFARI_ECDHE_ECDSA_BUG
my patched apache is now running without any problem more than a week.
** Patch added: "apache2_2.2.22-1ubuntu1.7-ppa1.debdiff"
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1197884/+attachment/4295296/+files/apache2_2.2.22-1ubuntu1.7-ppa1.debdiff
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
https://bugs.launchpad.net/bugs/1197884
Title:
apache2.2 SSL has no forward-secrecy: need ECDHE keys
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1197884/+subscriptions
More information about the Ubuntu-server-bugs
mailing list