You are viewing a plain text version of this content. The canonical link for it is here.

Posted to cvs@httpd.apache.org by hu...@apache.org on 2012/03/25 08:55:59 UTC

svn commit: r1304985 - /httpd/httpd/trunk/docs/manual/upgrading.xml

Author: humbedooh
Date: Sun Mar 25 06:55:59 2012
New Revision: 1304985

URL: http://svn.apache.org/viewvc?rev=1304985&view=rev
Log:
Mention SSL certificate checks are now enabled by default, as opposed to disabled in 2.2.
Submitted by: Petter Berntsen (petterb@gmail.com)

Modified:
    httpd/httpd/trunk/docs/manual/upgrading.xml

Modified: httpd/httpd/trunk/docs/manual/upgrading.xml
URL: http://svn.apache.org/viewvc/httpd/httpd/trunk/docs/manual/upgrading.xml?rev=1304985&r1=1304984&r2=1304985&view=diff
==============================================================================
--- httpd/httpd/trunk/docs/manual/upgrading.xml (original)
+++ httpd/httpd/trunk/docs/manual/upgrading.xml Sun Mar 25 06:55:59 2012
@@ -295,7 +295,11 @@
       variables has changed. The old format can still be used with the new
       <code>LegacyDNStringFormat</code> argument to <directive
       module="mod_ssl">SSLOptions</directive>. The SSLv2 protocol is
-      no longer supported.</li>
+      no longer supported. <directive module="mod_ssl">SSLProxyCheckPeerCN
+	  </directive> and <directive module="mod_ssl">SSLProxyCheckPeerExpire
+	  </directive> now default to On, causing proxy requests to HTTPS hosts
+	  with bad or outdated certificates to fail with a 502 status code (Bad 
+	  gateway)</li>
 
       <li><program>htpasswd</program> now uses MD5 hash by default on
       all platforms.</li>